A ransomware attack happens every 11 seconds by 2022, with a global cost of $20 billion yearly. Increasingly hackers are targeting data, infiltrating networks, and encrypting them during a ransomware attack. Just having a copy of data won’t keep your organization safe. With the appropriate backup and disaster recovery plan in place, you can refuse to pay the ransom, potentially saving your company millions of dollars.
There are two ways to strengthen your security posture and reduce your risk: air-gap and immutable backups. Putting both in place will offer you the best protection.
Air-Gapped Backups are separated from your network.
Why is this important? Bad Actors are accessing your network on average 40+ days before launching an attack. Air-gapping prevents these bad actors from accessing or even seeing that backup which is remote. It’s a backup copy that you store on infrastructure that is not accessible from your network. This gap ensures there is no direct connection to your production servers or storage systems. It provides protection from malware and keeps your data offline making it more difficult impossible for a ransomware attack to spread to your backups or a bad actor to delete.
If Air Gap is not possible, then make sure your local backups are Immutable.
Immutable Backups are unchangeable.
Ensuring your data is immutable means it is fixed, unchangeable, and can never be deleted, encrypted or modified. This is imperative as more and more cyberattacks are happening where a hacker encrypts an organization’s key data and will only unlock it after the ransom is paid.
Having your Data Secure isn’t enough…
Yearly testing is imperative.
Your backup and recovery strategy needs to be tested every year in order to verify it will protect you from a breach or a cyberattack. Being able to restore your data quickly will help you avoid a major financial or reputation impact on your business.
When you complete your annual testing, it gives your organization the peace of mind that your data will be safe and recoverable in the event of an attack.
Remember, Basic backups aren’t enough to protect you from cyberattacks anymore. They need to be air-gapped and immutable and tested annually.