Ransomware continues to be a top threat for tech users. ZDNET estimates the cost to IT at $1B this year alone. This pressure has put IT departments on the front line of defense--but how can you prepare for this type of attack? And which solutions are possible given your current budget and IT staff? These are the slides matching this recorded webinar, led by Rubrik’s Andrew Miller. http://pages.rubrik.com/20170309-Webinar-VMUG-Ransomwarejailisthereanywayout_.html Learn about these topics and more: 1) Threat: Concerns that IT departments are facing. We’ll stay away from FUD, but life is sometimes scary. 2) Theory: Nowadays, everyone has backups. So why are people still paying ransoms? (Clue: Complexity) 3) Solutions: Yes, you can do more than just have a current resume if hit by ransomware. We’ll explore what you can do in this event, along with other unexpected benefits. Finally, hear the real-world story of how Langs Building Supply thwarted a major attack using Rubrik Cloud Data Management.

1. Ransomware Jail
Is there any way out? (asking for a friend)

2. The Threat!
Exploring the Threat – New Developments
The Theory!
The Theory vs. The Reality
New Hope!
Practical Solution + Real World Examples
*A bit about me first - Andrew Miller - @andriven
2
1
2
3
Agenda

3. 3
1. The Threat!
Exploring the Threat – New Developments

4. ran · som · ware
/`ransəm , we(ə)r/
noun
a type of malicious software designed to block access to a computer system
until a sum of money is paid.

5. 5
Base Definition
We’ll make it fast.
• Malware that typically infects endpoints (laptops, etc.)
• Spread via browser vulnerabilities (malicious pages), e-mail attachments
• Encrypts local filesystems and attached network mounts
• Targeted attacks on individual storage vendors plausible – immutability will come
into play over time.
• (Previous) Best known name = Cryptolocker

6. 6
Can’t ignore this…

8. 8
The world has gotten scarier.
And it’s not slowing down…

9. 9
What’s New…
• ZDNet – 2016 = $1B Cost
• 2015 = $24M
• Confusion – FBI Recommendation & About Face
• High Profile Targets – SF Muni, Education, Healthcare, many more.
• Challenges are not just 1) Data Accessibility but 2) Speed of Restore.
• Not If but When – Why?

10. 10
What’s New…
Maturing Market
• RaaS Kits – Ransomware as a Service Kits
• Market Segmentation
• Customer Service Improvements
• Reliable Payment Model – Bitcoin Impact

11. 11
This is a maturing business
that competes with YOU.

12. 12
Classic Defense Recommendations
Operational Overhead?
1. Education
2. Antivirus, Patching, Filtering
3. Insurance
4. Data Protection - Backups

13. 13
2. The Theory!
The Theory vs. The Reality

14. 14
“Backups are a must.”
FBI, HIPAA, Sophos, Kaspersky, etc.

15. 15
“Conducting frequent backups and ensuring the ability to
recover data from backups is crucial to recovering from a
ransomware attack and ensuring the integrity of PHI
affected by ransomware.”
http://www.hhs.gov/sites/default/files/RansomwareFactSheet.pdf

16. 16
Easy, right?

17. 17
Traditional Architecture
1990s – Present
Backup &
Replication
Software
Backup Storage
Backup
Software
Backup
Servers
Backup
Proxies
Replication Catalog
Database
Tape Off-site Archive

18. Let’s Be Fair
There have been a few incremental improvements

19. 19
Improvements!
1990s – Present
Backup &
Replication
Software
Backup Storage
Backup
Software
Backup
Servers
Backup
Proxies
Replication Catalog
Database
Tape Off-site ArchiveBackup Storage
a
Dedupe
Metadata
2000s – Present

20. Results may vary

21. 21
It Starts Easy Enough …
Win VM
Hypervisor
Production Servers
SAN
Backup Proxy
Backup Server
Tape Archive Offsite Tape Archive

22. 22
… But Quickly Becomes Complex
Hypervisor
Production Servers
SANDisk-based
Backup
Backup Proxy
Backup Server
Database Server
Tape Archive Offsite Tape Archive
Search Server
VM DB VMLin Win VM

23. 23
Multiple Scale and Touch Points
Win DB
Lin DB
VM
VM
Hypervisor
Production Servers
SANDisk-based
Backup
Backup Proxies
Backup Server
Tape Archive Offsite Tape Archive
VM VM
VM VM
Win
Lin
Database Server
Search Server

24. 24
Availability Bandages for SPOFs
Hypervisor
Production Servers
SANDisk-based
Backup
Backup Proxies
Backup Server
Tape Archive Offsite Tape Archive
Database Server
Search Server
Win DB
Lin DB
VM
VM
VM VM
VM VM
Win
Lin

25. 25
Master Server – Control & Manage SPOF
Hypervisor
Production Servers
SANDisk-based
Backup
Backup Proxies
Backup Server
Tape Archive Offsite Tape Archive
Database Server
Search Server
Win DB
Lin DB
VM
VM
VM VM
VM VM
Win
Lin

26. 26
Database – Catalog / Metadata SPOF
Hypervisor
Production Servers
SANDisk-based
Backup
Backup Proxies
Backup Server
Tape Archive Offsite Tape Archive
Database Server
Search Server
Win DB
Lin DB
VM
VM
VM VM
VM VM
Win
Lin

27. 27

28. 28
Today’s Recovery Landscape Challenges
• Reliability of Data Recovery
• Speed of Data Recovery

29. 29
Risk, Threats, and Vulnerabilities
Risk is a function of the likelihood of a given threat acting upon
a particular potential vulnerability, and the resulting impact of
that adverse event on the organization.

30. 30
Complexity
Hypervisor
Production Servers
SANDisk-based
Backup
Backup Proxies
Backup Server
Tape Archive Offsite Tape Archive
Database Server
Search Server
Win DB
Lin DB
VM
VM
VM VM
VM VM
Win
Lin

31. 31
3. New Hope!
Practical Solution + Real World Examples

32. 32
Complexity is the enemy of reliability.
Whatever you do,
Whatever you buy,
Simplify your Backup Architecture.

33. 33
Key Solution Concepts
What we’ve seen that makes a difference…
• Reliability of Data Recovery
• Simplicity of Setup + Day to Day Operation

34. 34
“We have already gone through two deployments with Rubrik,
and have been really pleased with the ease of set-up. It takes
about twenty minutes to rack the appliance, and four minutes to
setup. We input our configuration details, the Rubrik system
maps our VM environment, and we’re ready to start protecting
our data”
Nathan Bach, Senior Systems Engineer @ Driscoll’s

35. 35
“We were using two leading Gartner Magic Quadrant vendors for
backup software and backup storage. Just deploying backup
software took a week, but with Rubrik’s turnkey appliance, the
system was running and protecting our virtual environment
within 30 minutes.
Unboxing and racking the appliance was the hardest part”
Jake Warren, Systems Administrator @ Red Hawk Casino

36. Meet Rubrik
36
Backup
Software
Backup
Servers
Backup
Proxies
Replication Catalog
Database
Tape Off-site ArchiveBackup Storage
a
Dedupe
Metadata
Private Public
Software fabric for orchestrating data across clouds. No forklift upgrades.
Converges Backup Software & Globally Deduplicated Storage

37. What’s the hardware?
37
The Smartest Dense Machine
• 2U Supermicro appliance – “Brik”
• Derived from Rubrik

38. Rubrik Appliance
38
The Smartest Dense Machine
• 2U Supermicro appliance – “Brik”
• 4 nodes per appliance
1 2 3 4

39. The hardware is simple.
39
The Smartest Dense Machine
• 2U Supermicro appliance – “Brik”
• 4 nodes per appliance
• Unlimited scale-out fabric
• Distributed file system
• Shared-nothing architecture
• Global deduplication
• Inherent data protection
• Cloud Providers for archive
• Can run in AWS & Azure

40. SLA
ENGINE
40
Simple is hard.
CLOUD DATA MANAGEMENT PLATFORM
DISTRIBUTED
METADATA
DISTRIBUTED
TASK
FRAMEWORK
CLUSTER
MANAGEMENT
SECURITYFILE SYSTEM
Backup
Recovery
Search
Replication
Archival

41. 41

42. Rack, Stack, Configure
42
20 Minutes

43. Example - VMware
43
vCenter Server
vCenter Server

44. vSphere Connectivity – Inventory Collection via API
44
vCenter Server
VM VM VM VM
VM VM VM VM

45. Data Protection Policies with SLA Domains
45
vCenter Server
Lin Win VM VM
DB Win VM VM
Silver SLA
Gold SLA
Bronze SLA

46. 46
Recovery Point Objective (RPO)
Availability Duration (Retention)
When to Archive (RTO)
Replication Schedule (DR)
{SLA

47. 47
RPOs Availability

48. 48

49. 49
“The system is simple to implement, allowing us to think about
the things you really care about, such as the SLA policies to
apply for protection.”
Nathan Bach, Senior Systems Engineer @ Driscoll’s

50. 50
There’s More! It’s not just VMware.
Physical Linux Physical SQL
Simplify protection of
Linux servers with policy-
driven automation and
granular protection.
Erasure Coding
Deliver forever
incremental, point-in-time
recovery, intelligent log
management with single
SLA policy engine.
Rubrik Edge
Increase storage
utilization and efficiency
while delivering industry
leading fault tolerance
and performance.
Extend data management
to all business locations
with full-featured software
appliance.
RBAC
Secure management
plane with granular
control of user access to
data across hybrid cloud.
d0 d1 d2 d3
c0 c1
Physical Windows Encryption Custom Reporting

51. Your Data Center Today
51
Backup Proxy
SAN
Production Servers
Backup Server
Search Server
Disk-Based
Backup
Tape Archive Offsite
Tape Vault

52. Scale Out
Scale Out
52
Simplification via Rubrik
VM VM
VM VM
VM
VM
Hypervisor
Production Servers
SAN
Rubrik
Replication + Long Term
Retention + Search
Private

53. 53
Key Solution Concepts
What we’ve seen that makes a difference…
• Reliability of Data Recovery
• Simplicity of Setup + Day to Day Operation
• Immutability of Snapshots

54. 54
Key Solution Concepts
What we’ve seen that makes a difference…
• Reliability of Data Recovery
• Simplicity of Setup + Day to Day Operation
• Immutability of Snapshots
• Speed of Data Recovery
• Speed of restore via live mount

55. 55
Live Mount
Quick Start: Rack and go. Auto-
discovery.
Rapid Ingest: Flash-optimized,
parallel ingest accelerates snapshots.
Scale-out dedupe and compress.
Automate: SLA policy engine for
hands-free management.
Recover: Instant and point-in-time
recovery. Search and restore files.
Recover from Ransomware.
Customer Example #1
Secure: End-to-end encryption.
Cloud: Secure “CloudOut” instantly
accessible with global search.
Primary Environment
SLA Policy Engine
Log Management
NAS
Private Public

56. 56
Key Solution Concepts
What we’ve seen that makes a difference…
• Reliability of Data Recovery
• Simplicity of Setup + Day to Day Operation
• Immutability of Snapshots
• Speed of Data Recovery
• Speed of restore via live mount
• Automation/API to enhance Restore Capabilities

57. 57
Automation & API’s
Your AppNow OpenAPI

58. 58
In their own words…
Lang’s Video Case Study

59. 59
Today’s Recovery Landscape
• Reliability of Data Recovery
• Speed of Data Recovery

60. 60
Rubrik Manages All Your Data - Anywhere
NAS
Production Rubrik Cloud Data Management Platform
Backup &
Recovery
Disaster
Recovery
Archival &
Compliance
Search
Copy Data
Management
Analytics
Automated,
secured data
management
anywhere.
EDGE

61. 61
Last but not least…
Join the Rubrik Alliance,
get your Backup Wars kit.
bit.ly/VMUG-Swag

62. 62
Q & A
Thanks for attending!

63. Don’t Backup. Go Forward.