<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-PHTV9K7" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to Main Content
Product cover image for Mircom Technologies Ltd.: Responding To A Ransomware Attack (A)

Mircom Technologies Ltd.: Responding To A Ransomware Attack (A)

Robert D. Austin, Laurel C. Austin, R. Chandrasekhar

Product #:W28547
Supplier:Ivey
Discipline:Communications, Information Systems
Setting:Canada, 2019
Details:Case (PDF) • 14 pages • 2022-09-15

Subjects:

Organizational cultureTechnology and analyticsOrganizational behaviorInformation systems

Industries:

Fabrication and manufacturing

Geography:

North AmericaCanada
Your Price:$9.71

Purchase this material with a free Educator Account and enjoy more benefits:

  • Free Educator Copy
  • Free Teaching Notes
  • Build your coursepack
  • Discounted academic price

In September 2019, Mircom Technologies Limited faced a serious crisis after sustaining a ransomware attack. The medium-sized manufacturer based in Toronto, Canada had been offering smart building solutions for almost two decades. The attackers encrypted all of the company’s data, halting all business systems and processes that relied on information technology, including email, voice-over-Internet phones, manufacturing, billing, shipping, and receiving. The company was suddenly unable to conduct basic business operations. The attackers demanded a large payment in bitcoin in exchange for a decryption key that would allow the company to access its data. Over the next several weeks, Mircom Technologies Limited faced unforeseen challenges in its attempt to recover its data, negotiate with the attackers, and eventually find a way to successfully restore normal operations.

Learning Objectives

This case is suitable for courses in decision-making, risk management, risk governance, resilience, crisis management, cyber-security, operations, and IT leadership at the undergraduate, executive, and pre- and post-experience master levels. It can be taught as part of a series of cases aimed at providing students with an understanding of the different types of cyber-attacks (e.g., denial-of-service, malware, ransomware, nation state) and the short- and long-term implications of each type for business continuity. The case provides students with opportunities to analyze and discuss issues related to preparing for and preventing serious incidents such as ransomware attacks, managing real-time crises, building organizational resiliency, and avoiding cyber-security risk. The case demonstrates that cyber-security issues are not purely technical, they require the attention of the organization’s top management team. After preparing and discussing this case, students will be able to
  • recognize the full scope of cyber-security issues, beyond their technical aspect to their implications for the organization’s senior management team;
  • understand what a ransomware attack is and how it may unfold;
  • assess the risks that ransomware attacks can pose to a business’s operations and continuity;
  • identify what characteristics make an organization attractive to attackers;
  • understand which organizational and behavioural factors can reduce or enhance the risk of ransomware attacks;
  • understand the value and design of a robust system to back up an organization’s data;
  • assess the level of readiness and resilience required to manage and recover from a ransomware attack;
  • develop a ransomware recovery plan;
  • identify the factors that enable an organization to survive a ransomware attack; and
  • discuss how decision-making and risk management processes can improve the chance a favourable outcome.
Loading
Case Study: Mircom Technologies Ltd.: Responding To A Ransomware Attack (A) (English version) | Ivey Publishing