Commvault Unveils Clumio Backtrack - Near Instant Dataset Recovery in S3
The U.S. Cybersecurity and Infrastructure Security Agency’s (CISA) ransomware site US-CERT defines ransomware as: “a type of malicious software, or malware, designed to deny access to a computer system or data until a ransom is paid. Ransomware typically spreads through phishing emails or by unknowingly visiting an infected website.”
A ransomware attack is an attack carried out with malware that encrypts your systems and data, preventing you from accessing your data and rendering many of your critical services offline. Attackers demand a ransom in exchange for decrypting your data, allowing you to access it again. Often, attackers ask for payment in cryptocurrency since it is anonymous and less traceable.
Ransomware attacks from cybercriminals have cost victims many millions of dollars, with one study suggesting the 2020 total cost could ultimately total $1.4 billion in the U.S. Another study found that out of the organizations that reported losses from a ransomware attack, more than two-thirds (67%) said their combined losses reached between $1 million and $10 million (USD), while 4% estimated staggering losses in the range of $25 million to $50 million. Victims of the largest attacks include organizations from every industry, government agencies, IT providers, and educational institutions. No organization is immune, but there are strategies to help ensure your organization is prepared.
…more than two-thirds (67%) said their combined losses reached between $1 million and $10 million (USD), while 4% estimated staggering losses in the range of $25 million to $50 million.
There are many solutions out there focusing on Ransomware prevention, but as good as those solutions are there is no solution that can guarantee 100% that organizations won’t suffer an attack, a recent study found out that paying a ransom doesn’t guarantee a faster recovery from an attack so on this blog we will focus on best practices that will allow your organization to recover in the event of suffering a Ransomware attack.
Your first step should be to perform an assessment of your current recovery capabilities, they most likely are excellent at operational recoveries, but would they allow you to recover in case of a widespread sophisticated attack? If an attacker takes control of your production environment, would they be able to see and access your backups? If an attacker takes full control of your production environment, do you have the capabilities to recover on a new empty environment? Those are only a few of very important questions that have to be asked, and if you’re not totally confident that you have the capabilities to recover in a worse case scenario perhaps it’s a good moment to ask yourself if there’s a better way of protecting your backups.
There are multiple ways of achieving a better level of security, but the best way for most organizations would be to leverage a solution that already achieves this in a cost effective way such as Clumio SecureVault, Clumio stores backups outside of the customer’s security sphere in an air-gap manner that are immutable and cannot be deleted. This ensures hackers or bad-actors cannot compromise the backup copies. Clumio is easy to deploy so you can start protecting your most critical assets right away to keep peace of mind that you will be able to recover even in a worst case scenario of a widespread sophisticated attack.