Re: Worth it for:
Also had CryptoLocker on my network.
Luckily permissions to files and folders was heavily enforced, so the damage was constrained to only that user's departmental folders.
It was a simple procedure to rm -rf said department's data, copy fresh data from a backup, apply network permissions where needed, and everybody was back to work.
Laptop hard drive? Got binned as I could not get rid of cryptolocker - seems user's son "played" with it and it got installed so good and proper that I preferred to bin that hard drive rather than take the risk of a resurrection. It even start to encrypt USB drives inserted... nah, not good to mess with that. Bin it, get new HDD, reinstall windows, and all is well and good.
Biting the hand that feeds IT
