Security incidents are trending topics these days – especially with October being security awareness month. Why? It is an easy pay day for threat actors to exploit human error. Ransomware is a common threat vector that hackers are using to lock computers and data for ransom. Once paid, data is released (some of the times, that is). It doesn’t take much time to find articles, whitepapers, and supporting content on the effects of an attack and how to recover. However, with storage and backup innovation continuing to advance, many are ignoring the fact that backups are just another target for threat actors to exploit. If your backup data is breached, what then?
The good news is that organizations are starting to understand the threats that lie with ransomware and other types of attacks. Many organizations are embracing new options to battle this challenge. A good majority of the populace is turning to the cloud to protect their data. Organizations will keep on-premise backups and then send another copy through the cloud to make a clear-cut path for secure and easy recovery.
Some organizations are still relying on less efficient ways to protect their backups. Tape is still not dead as a backup for your backup. However, it is an extremely inefficient and time-consuming way of handling your backups. Others, are just ignoring the fact that security incidents can happen to your backups if you are not handling them properly. This could leave your organization scrambling to recover – maybe even closing your doors for good.
So, how can you protect your backups? Here are a few basic strategies that you should deploy – whether it is in-house or through a provider:
Keep your systems up to date: I don’t think I’ll ever get sick of saying this. An outdated operating system or application is an open invitation for malware. Way too many organizations are not properly practicing patch management practices. Look at the recent Equifax breach, Petya, or WannaCry. All these organizations have experienced huge breaches due to the fact that they did not properly update a system when a patch was released.
Lock it down: This is obvious, but it is important to have secured access. Keep a layered defense approach to ensure a compromise does not expose your entire environment. Many of the advanced ransomware programs will follow and track account information and passwords. With this, they will move laterally through your environment and do more damage in the end.
Have a separate copy of backup offsite: It is important that you are keeping a separate copy of your data offsite, in a secure location. Many organizations will just store backups onsite and think that they are protected. Little do they know, when a breach occurs, threat actors could gain access to these backups and compromise the information leaving bad data and a scramble to recover. At NetServe365, we have partnered with Iron Mountain as our secure data center. We store application and snapshot backups locally, then transfer encrypted deduplicated backups to our underground data center.
Have a means of detection: Now, you can recover easily, but how do you know you have been compromised? Many organization are turning to MSSPs for 24/7/365 detection services. While preventative actions and hardening your network are extremely important, they lack the security intelligence to tell you what actions were taken place during an attack and what data is compromised. With a comprehensive service, you will be able to have the visibility into your environment to quickly respond and remediate an issue with minimal downtime.
If you feel your organization is one of the many that aren’t properly securing your backups, network, or aren’t completing backups to start with it is time to start having these discussions. Malware and ransomware are on the rise and coming for your organization’s critical information.
It’s time to finally say, Happy Holidays! While the holiday season is for spending time with your family, eating way too much, and spreading the holiday cheer, it also signifies that the year is coming to an end. And, we’ve all heard the cliché saying, new year new me, right? Well, as you might have … Continue reading “New Connections: An Introduction to Magna5”
In the recent Solarwinds MSP Cyber Preparedness Survey, Solarwinds surveyed 400 Small- to Medium-Sized Enterprises. This survey investigated the cyber security preparedness, experiences and failings of these organizations to better understand what we can be doing to better protect critical information. The headlines of all the attacks this year are enough to scare people to … Continue reading “7 Pitfalls That Are Hindering Your Cyber Security”
FOR IMMEDIATE RELEASE Contact: Anne Clarrissimeaux Communications Manager Magna5 email@example.com 214-552-0910 MAGNA5 ACQUIRES NETSERVE365 Fourth acquisition in 18 months strengthens PaaS, IaaS, UCaaS services portfolio with addition of award-winning network and server monitoring and management, cloud hosting and managed IT security services Pittsburgh (November 16, 2017) – Magna5, a portfolio company of NewSpring … Continue reading “Magna5 Acquires NetServe365”