If cyber criminals can compromise your backups, they leave you with no alternative but to pay up.
So how can you protect your backups to stop them being encrypted along with your production data?
Many of us must have heard of Air Gap Backup but may not be having in-depth knowledge. We know it is a technique used to avoid Data loss but how exact it secured Data could be a question for most of us.
We have created a Presentation covering all the aspects to detail you on Air Gap Backup and its working.
For details please go through the following PPT.
Ransomware Unveiled: Understanding, Preventing, and RecoveringMaryJWilliams2
Delve into the world of ransomware with our comprehensive PDF submission. Gain a deep understanding of ransomware threats, their impact on businesses, and effective strategies for prevention and recovery. Explore real-world case studies and best practices to mitigate ransomware risks and ensure business continuity. Equip yourself with the knowledge needed to defend against ransomware attacks. To Know more: https://stonefly.com/white-papers/ransomware-faqs/
Protecting the information you store about your customers and clients is critical to the success of your small company. On the other hand, many owners of small businesses fail to see the need to consistently Data backup for small business owners.
Find out more about:
-How the cloud is changing the technological landscape for businesses
-The benefits of cloud-based software
-Security tips to protect yourself, your company, and your clients
-What to look for when choosing a provider
How the organizations should secure the entire life cycle of their records without tampering or interference from organizational insiders or outsiders
Its a presentation on the paper written by :
Ragib Hasan, Marianne Winslett, Soumyadeb Mitra, Windsor Hsu and Radu Sion
It was made in autumn 2009
Nowadays Organisations rely on data heavily to increase the efficiency and effectiveness of their business activities. It is necessary for organisations to secure their database from external attack in other to ensure confidentiality, integrity and availability. Different approaches to protect sensitive database are needed in an enterprise environment and can be combined together to strengthen an organization's security posture, while minimizing the cost and effort of data protection. Some of which are explained below. 1
Many of us must have heard of Air Gap Backup but may not be having in-depth knowledge. We know it is a technique used to avoid Data loss but how exact it secured Data could be a question for most of us.
We have created a Presentation covering all the aspects to detail you on Air Gap Backup and its working.
For details please go through the following PPT.
Ransomware Unveiled: Understanding, Preventing, and RecoveringMaryJWilliams2
Delve into the world of ransomware with our comprehensive PDF submission. Gain a deep understanding of ransomware threats, their impact on businesses, and effective strategies for prevention and recovery. Explore real-world case studies and best practices to mitigate ransomware risks and ensure business continuity. Equip yourself with the knowledge needed to defend against ransomware attacks. To Know more: https://stonefly.com/white-papers/ransomware-faqs/
Protecting the information you store about your customers and clients is critical to the success of your small company. On the other hand, many owners of small businesses fail to see the need to consistently Data backup for small business owners.
Find out more about:
-How the cloud is changing the technological landscape for businesses
-The benefits of cloud-based software
-Security tips to protect yourself, your company, and your clients
-What to look for when choosing a provider
How the organizations should secure the entire life cycle of their records without tampering or interference from organizational insiders or outsiders
Its a presentation on the paper written by :
Ragib Hasan, Marianne Winslett, Soumyadeb Mitra, Windsor Hsu and Radu Sion
It was made in autumn 2009
Nowadays Organisations rely on data heavily to increase the efficiency and effectiveness of their business activities. It is necessary for organisations to secure their database from external attack in other to ensure confidentiality, integrity and availability. Different approaches to protect sensitive database are needed in an enterprise environment and can be combined together to strengthen an organization's security posture, while minimizing the cost and effort of data protection. Some of which are explained below. 1
What are remote backup & local backup? What are the differences between them? How to make local or remote backup via professional, reliable, and free solution?
Air-gapping is an advanced data protection feature used to isolate and detach target storage volumes from unsecure networks, production environments, and host platforms.
Multi-part Dynamic Key Generation For Secure Data EncryptionCSCJournals
Storage of user or application-generated user-specific private, confidential data on a third party storage provider comes with its own set of challenges. Although such data is usually encrypted while in transit, securely storing such data at rest presents unique security challenges. The first challenge is the generation of encryption keys to implement the desired threat containment. The second challenge is secure storage and management of these keys. This can be accomplished in several ways. A naive approach can be to trust the boundaries of a secure network and store the keys within these bounds in plain text. A more sophisticated method can be devised to calculate or infer the encryption key without explicitly storing it. This paper focuses on the latter approach. Additionally, the paper also describes the implementation of a system that in addition to exposing a set of REST APIs for secure CRUD operations also provides a means for sharing the data among specific users.
How to Stop Ransomware Attacks from Deleting Backup Data?MaryJWilliams2
StoneFly offers advanced backup and disaster recovery solutions designed to provide robust ransomware protection. By implementing these solutions, organizations can secure their backup data and ensure operational continuity in the face of evolving cyber threats.
Data Security Features for Preventing Ransomware Deletion
Air-gapped and Immutable Repositories
StoneFly’s backup solutions provide air-gapped and immutable repositories for data storage. This dual protection mechanism ensures that backup data remains isolated/detached/unplugged from the production environment and cannot be modified or deleted by ransomware.
Air-gapping ensures physical/logical separation, while immutability ensures that backup files are read-only and write-protected, for a set retention period, preventing unauthorized tampering or deletion.
For more information visit : https://stonefly.com/storage/nas-storage
Locking Down Your Data: Best Practices for Database SecurityFredReynolds2
Database security is a set of practices and technologies used to secure database management systems against malicious cyber-attacks and unauthorized access. Ensuring a database is intricate because it requires knowledge of multiple areas of information security, including application security, data security, and endpoint security.
Moreover, Database Security is the safeguarding of sensitive data and the prevention of data loss. Database Administrator (DBA) is responsible for ensuring database security.
Bio-Cryptography Based Secured Data Replication Management in Cloud StorageIJERA Editor
Cloud computing is new way of economical and efficient storage. The single data mart storage system is a less
secure because data remain under a single data mart. This can lead to data loss due to different causes like
hacking, server failure etc. If an attacker chooses to attack a specific client, then he can aim at a fixed cloud
provider, try to have access to the client’s information. This makes an easy job of the attackers, both inside and
outside attackers get the benefit of using data mining to a great extent. Inside attackers refer to malicious
employees at a cloud provider. Thus single data mart storage architecture is the biggest security threat
concerning data mining on cloud, so in this paper present the secure replication approach that encrypt based on
biocrypt and replicate the data in distributed data mart storage system. This approach involves the encryption,
replication and storage of data
When data collects in one place, it is called data at rest. Data at rest can be archival or reference files that are changed rarely or never; data at rest can also be data that is subject to regular but not constant change.
When data collects in one place, it is called data at rest. Data at rest can be archival or reference files that are changed rarely or never; data at rest can also be data that is subject to regular but not constant change.
How to write a Business Continuity PlanDatabarracks
According to our 2023 Data Health Check, less than half of organisations have an up to date Business Continuity Plan. But creating a plan isn't hard, and we will show you the proven methods to deliver something practical and usable.
Listen to the webinar and learn how to:
- Identify your risks and create mitigation strategies
- Create your Business Impact Analysis
- Find the right people for an effective crisis team
- Accurately identify the scope of continuity projects
- Make testing and exercising more frequent, productive and frictionless
How to write an effective Cyber Incident Response PlanDatabarracks
Set the standard for dealing with cyber incidents at your organisation.
What to include & what to pre-prepare
Managing and maintaining the plan
Identifying a cyber incident
Isolating & safely bringing systems back online
What are remote backup & local backup? What are the differences between them? How to make local or remote backup via professional, reliable, and free solution?
Air-gapping is an advanced data protection feature used to isolate and detach target storage volumes from unsecure networks, production environments, and host platforms.
Multi-part Dynamic Key Generation For Secure Data EncryptionCSCJournals
Storage of user or application-generated user-specific private, confidential data on a third party storage provider comes with its own set of challenges. Although such data is usually encrypted while in transit, securely storing such data at rest presents unique security challenges. The first challenge is the generation of encryption keys to implement the desired threat containment. The second challenge is secure storage and management of these keys. This can be accomplished in several ways. A naive approach can be to trust the boundaries of a secure network and store the keys within these bounds in plain text. A more sophisticated method can be devised to calculate or infer the encryption key without explicitly storing it. This paper focuses on the latter approach. Additionally, the paper also describes the implementation of a system that in addition to exposing a set of REST APIs for secure CRUD operations also provides a means for sharing the data among specific users.
How to Stop Ransomware Attacks from Deleting Backup Data?MaryJWilliams2
StoneFly offers advanced backup and disaster recovery solutions designed to provide robust ransomware protection. By implementing these solutions, organizations can secure their backup data and ensure operational continuity in the face of evolving cyber threats.
Data Security Features for Preventing Ransomware Deletion
Air-gapped and Immutable Repositories
StoneFly’s backup solutions provide air-gapped and immutable repositories for data storage. This dual protection mechanism ensures that backup data remains isolated/detached/unplugged from the production environment and cannot be modified or deleted by ransomware.
Air-gapping ensures physical/logical separation, while immutability ensures that backup files are read-only and write-protected, for a set retention period, preventing unauthorized tampering or deletion.
For more information visit : https://stonefly.com/storage/nas-storage
Locking Down Your Data: Best Practices for Database SecurityFredReynolds2
Database security is a set of practices and technologies used to secure database management systems against malicious cyber-attacks and unauthorized access. Ensuring a database is intricate because it requires knowledge of multiple areas of information security, including application security, data security, and endpoint security.
Moreover, Database Security is the safeguarding of sensitive data and the prevention of data loss. Database Administrator (DBA) is responsible for ensuring database security.
Bio-Cryptography Based Secured Data Replication Management in Cloud StorageIJERA Editor
Cloud computing is new way of economical and efficient storage. The single data mart storage system is a less
secure because data remain under a single data mart. This can lead to data loss due to different causes like
hacking, server failure etc. If an attacker chooses to attack a specific client, then he can aim at a fixed cloud
provider, try to have access to the client’s information. This makes an easy job of the attackers, both inside and
outside attackers get the benefit of using data mining to a great extent. Inside attackers refer to malicious
employees at a cloud provider. Thus single data mart storage architecture is the biggest security threat
concerning data mining on cloud, so in this paper present the secure replication approach that encrypt based on
biocrypt and replicate the data in distributed data mart storage system. This approach involves the encryption,
replication and storage of data
When data collects in one place, it is called data at rest. Data at rest can be archival or reference files that are changed rarely or never; data at rest can also be data that is subject to regular but not constant change.
When data collects in one place, it is called data at rest. Data at rest can be archival or reference files that are changed rarely or never; data at rest can also be data that is subject to regular but not constant change.
Similar to How to protect backups from ransomware (20)
How to write a Business Continuity PlanDatabarracks
According to our 2023 Data Health Check, less than half of organisations have an up to date Business Continuity Plan. But creating a plan isn't hard, and we will show you the proven methods to deliver something practical and usable.
Listen to the webinar and learn how to:
- Identify your risks and create mitigation strategies
- Create your Business Impact Analysis
- Find the right people for an effective crisis team
- Accurately identify the scope of continuity projects
- Make testing and exercising more frequent, productive and frictionless
How to write an effective Cyber Incident Response PlanDatabarracks
Set the standard for dealing with cyber incidents at your organisation.
What to include & what to pre-prepare
Managing and maintaining the plan
Identifying a cyber incident
Isolating & safely bringing systems back online
Lessons from 100+ ransomware recoveriesDatabarracks
In this session, Databarracks will share lessons learned recovering from complex cyber attacks. These are real-life lessons, learned the hard way.
Agenda:
• The evolution of ransomware attacks
• 5 specific recovery stories that outline different recovery approaches
• The timeline of an attack
• The key lessons to improve your cyber resilience
How to write an IT Disaster Recovery PlanDatabarracks
The written plan is the most important part of any disaster recovery solution. Yes, the recovery software is crucial, the failover environment must be stable and your connectivity must be reliable, but these are just components. Without a plan they’re useless.
Having a well-designed and thoroughly tested plan in place will substantially increase your ability to withstand, and recover from, disruption. We’re going to share with you the methods, exercises, tools and expertise needed to create a plan that works when you need it most.
• Assessing your risks and creating a Business Impact Analysis
• Setting realistic recovery objectives
• Making incident response plans that work
• How to communicate in a disaster
Who's responsible for what in a crisisDatabarracks
Whose responsibility for what in a disaster scenario can become blurred in a stressful situation.
Responsibility lies with the IT admins up to the IT Director and CEO.
Communicating in a crisis, big or small, is one of the most important tasks a leader will have to deliver and must be pre-prepared.
To make sure you get it right here are 4 key elements to remember.
Insurance companies are setting more stringent requirements to obtain cyber insurance cover.
Databarracks spoke to several to review their application questionnaire.
Here is a summary of what's changed and what you need to get cover.
How to make your supply chain resilientDatabarracks
In Business Continuity, your most difficult challenge is making your supply chain resilient.
A cyber attack on a supplier or a shortage of stock can immediately impact your operations but is much harder to resolve.
We're sharing our Toolkit to let you measure, track and improve your supply chain resilience.
Download the toolkit here: https://www.databarracks.com/resources/supplier-continuity-toolkit
How to recover from ransomware lessons from real recoveriesDatabarracks
It’s hard to overstate the magnitude of a ransomware attack.
Ransomware incidents are incredibly complex. They take days, weeks and sometimes months to resolve. There is a huge additional burden on the IT team to co-ordinate, feed information to relevant parties and restore systems.
We share our experience across multiple ransomware recoveries over the last year.
There are lots of reasons to decommission a data centre.
Perhaps you’re closing down an office? Or saving money by outsourcing your Disaster Recovery? Maybe your hardware is reaching end-of-life and you’re moving to the cloud?
But It’s not an easy project. It can take longer than expected, eating into cost-savings and brings an increased risk of service-interruption.
Key takeaways:
• A checklist for Discovery, Implementation and Disposal stages
• How to create an accurate budget and timetable
• Choosing between a phased or ‘big bang’ approach
How to know when combined backup and replication is for youDatabarracks
Why would anyone want to use two different products for backup and DR instead of one? You wouldn’t. If a single product reduces your IT complexity, you’re taking it, right?
Vendors have always combined backup and replication, taking various approaches to deliver backup and DR in one product.
This webinar shows you the pros and cons of each approach. And you’ll get recommendations to fit each use case.
How to write an effective Cyber Incident Response PlanDatabarracks
Set the standard for dealing with cyber incidents at your organisation.
What to include & what to pre-prepare
Managing and maintaining the plan
Identifying a cyber incident
Isolating & safely bringing systems back
Invoking Disaster Recovery isn’t as easy as some might have us believe. In fact, it’s probably one of the most intensely scrutinised and difficult times for any IT professional.
There are two big considerations you need to tackle – one is dealing with the human and operational factors. The other is the nuances of the technology setup. Step-by-step guide to setup Server dependencies and setting recovery priority Planning for connectivity issues Testing and matching performance on the DR environment Completing the project and the move to Business as Usual operations
Microsoft Azure has become the default option for anyone migrating from on-site data centres to the cloud.
It’s an obvious choice.
Most IT departments are familiar and skilled with the Microsoft toolset, so for back-office systems it just makes sense.
The question is, where to start? Setting up disaster recovery to Azure is a logical, low-risk first step.
Profit from tricks on how to achieve a better TCO by using Azure for DRaaS:
Replicating both VMware and Hyper-V environments
Setting up the ZCA (Zerto Cloud Appliance) in Azure
Connecting the ZVM (Zerto Virtual Manager) to your vCenter
Using Blob storage for replica disks and journals
Failing-over into Azure and failing-back
The Databarracks Continuity Toolshed: Free tools for better recoveriesDatabarracks
Over the past 3 years, we’ve been developing practical tools that take the heavy lifting out of in-depth continuity planning, making it faster and more approachable to newcomers.
But there’s an important caveat. Shiny, interactive tools can trick you into feeling productive by outputting important-looking information. Without a plan, instructions, or good data, they’re not useful.
That’s what The Recovery Toolshed: free tools for better recoveries is all about.
Explaining how Databarracks range of free recovery tools combine to output meaningful metrics and useful information that can be practically applied to great continuity planning.
Webinar how to write a business continuity planDatabarracks
Business continuity has a PR problem. From the outside, it seems boring, difficult, and not a priority. According to our 2017 Data Health Check, less than half of organisations with small IT teams (1-5) have a BC plan.
The thing is, it’s never been easier.
Continuity today is a mature area of study. There are established best practices and proven processes that do most of the heavy lifting for you.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
2. 1
Immutable
storage
Immutable storage is the simplest
way to protect backup data. Data is
stored in a Write Once Read Many
(WORM) state and cannot be
deleted for a prespecified period.
Policies are set in backup software
or at storage level and it means
backups can’t be changed or
encrypted.
3. Utilising an
‘air-gap’
2
Another method of protection is the
‘air-gap’. Adding an ‘air-gap’ means
separating backups from production
data so there is no way for an attack to
spread from one to the other.
Traditionally, that means keeping a
copy of data physically separate, often
on tape. If an organisation doesn’t want
to keep its backups on tape (as many
don’t), it’s also possible to create a
logical ‘air-gap’, and there are several
ways to do that.
4. 3
Restricting
access
To protect backups, it’s important to
prevent unauthorised access to
backup software.
Restricting access, strong
passwords, and MFA all reduce the
chance of attackers accessing
backups.
5. 4
Using backups
todetectattacks
Backup vendors are now adding innovative
features, using signs from backup and
production data to detect and prevent
attacks.
A sudden, very large incremental backup
indicates that a lot of data has changed and
should be investigated as a potential
ransomware attack.
Honeypot files can be closely monitored and
provide alerts if ransomware encrypts those
files.
Lastly, you can monitor the entire storage
environment can be monitored for spikes in
I/O activity.