Saudi Arabia advances 22 ranks in World Bank's Statistical Performance Index    EXPRO chief: Financial proceeds of expenditure efficiency amounted to SR1.15 trillion    Saudi drivers' income from delivery applications reaches SR1.1 billion in first 9 months of 2024    Eng. Aiman Al-Mudaifer appointed Acting CEO of NEOM    Saudi Champion Saeed Al-Mouri scores notable feat in Radical World Championship in Abu Dhabi with support from Bin-Shihon Group    'Marvels of Saudi Orchestra' to dazzle audience in Tokyo on Nov. 22    Pakistan PM visits MWL headquarters in Makkah    Riyadh: The hub of wisdom and the pillar of solidarity    Toxic smog in Pakistan is so bad you can see it from space    New Zealand PM says sorry for 'horrific' care home abuse    New arrests made in Amsterdam over violence after football match    Climate fight 'bigger than one election', says Biden's top envoy    Saudi Arabia launches Young Researchers Awards at UNCCD COP16 science pavilion Total prize pool of $70,000 for students and researchers from across the world    Culture minister inspects archaeological sites and cultural projects in Al-Ahsa    Red Sea International Film Festival returns to Al Balad in its fourth edition    Rita Ora is tearful in tribute to Liam Payne at MTV Awards    'Art of the Kingdom': First traveling exhibition of contemporary Saudi art launched in Rio de Janeiro    France to deploy 4,000 police officers for UEFA Nations League match against Israel    Al Nassr edges past Al Riyadh with Mane's goal to move up to third    Al Ahli continues strong form with 2-0 win over Al Raed in Saudi Pro League    India puts blockbuster Pakistani film on hold    The Vikings and the Islamic world    Filipino pilgrim's incredible evolution from an enemy of Islam to its staunch advocate    Muted Eid celebrations for millions of Nigerian Muslims    Exotic Taif Roses Simulation Performed at Taif Rose Festival    Asian shares mixed Tuesday    Weather Forecast for Tuesday    Saudi Tourism Authority Participates in Arabian Travel Market Exhibition in Dubai    Minister of Industry Announces 50 Investment Opportunities Worth over SAR 96 Billion in Machinery, Equipment Sector    HRH Crown Prince Offers Condolences to Crown Prince of Kuwait on Death of Sheikh Fawaz Salman Abdullah Al-Ali Al-Malek Al-Sabah    HRH Crown Prince Congratulates Santiago Peña on Winning Presidential Election in Paraguay    SDAIA Launches 1st Phase of 'Elevate Program' to Train 1,000 Women on Data, AI    41 Saudi Citizens and 171 Others from Brotherly and Friendly Countries Arrive in Saudi Arabia from Sudan    Saudi Arabia Hosts 1st Meeting of Arab Authorities Controlling Medicines    General Directorate of Narcotics Control Foils Attempt to Smuggle over 5 Million Amphetamine Pills    NAVI Javelins Crowned as Champions of Women's Counter-Strike: Global Offensive (CS:GO) Competitions    Saudi Karate Team Wins Four Medals in World Youth League Championship    Third Edition of FIFA Forward Program Kicks off in Riyadh    Evacuated from Sudan, 187 Nationals from Several Countries Arrive in Jeddah    SPA Documents Thajjud Prayer at Prophet's Mosque in Madinah    SFDA Recommends to Test Blood Sugar at Home Two or Three Hours after Meals    SFDA Offers Various Recommendations for Safe Food Frying    SFDA Provides Five Tips for Using Home Blood Pressure Monitor    SFDA: Instant Soup Contains Large Amounts of Salt    Mawani: New shipping service to connect Jubail Commercial Port to 11 global ports    Custodian of the Two Holy Mosques Delivers Speech to Pilgrims, Citizens, Residents and Muslims around the World    Sheikh Al-Issa in Arafah's Sermon: Allaah Blessed You by Making It Easy for You to Carry out This Obligation. Thus, Ensure Following the Guidance of Your Prophet    Custodian of the Two Holy Mosques addresses citizens and all Muslims on the occasion of the Holy month of Ramadan    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Mitigating against ransomware: Don't let backups be the back door
Published in The Saudi Gazette on 24 - 04 - 2020

The damage ransomware can inflict on businesses is staggering. For businesses that feel they have no choice but to pay cybercriminals in order to unlock their files, they not only put their money at risk, but also put their reputation at stake. According to a report produced by Cybersecurity Ventures, global ransomware damage costs are predicted to cost upwards of $20 billion in in 2021.
While the best remedy for a ransomware attack is prevention, in the prevailing threat landscape that isn't always possible. The same Cybersecurity Ventures study forecasts that an organization will fall victim to a ransomware attack every 11 seconds in 2021. Ultimately, almost all computer systems are fallible to breach. So, businesses must be prepared for the reality of relentless cyber-attacks and have a contingency plan in place should the worst happen.
Having offsite and offline backups and robust disaster recovery capabilities can help businesses restore data that has been encrypted by attackers. However, the risks and possibilities of ransomware are varied. So, businesses need a plan for prevention and ensure their backup data cannot be used against them.
The threat landscape is evolving
There is a growing amount of fragmentation in the types of ransomware attacks in play today. Chief Security Officers (CSOs) mainly associate ransomware with data encryption. This involves malicious agents gaining access to sensitive or mission-critical data and encrypting it. The ‘deal' in this scenario is the business pays a ransom in exchange for files to be decrypted and returned to their original, usable form. This is by no means the only threat for CSOs to consider. In other cases, cyber-attackers will upload data instead of encrypting it. This means the ransom is to prevent a public leak of potentially sensitive data.
These disguises and behaviors make it very difficult to consistently defend against the widening landscape of threats. The golden rule for organizations to follow is to maintain a clear view of what is normal behaviour within their own IT infrastructure. This can be achieved through continuously monitoring data and cloud storage, as well as leverage analytics on networks, operating systems and applications. This increased awareness of what a secure state of play looks like can make suspicious and malicious activity easier to spot, crucially accelerating time to response.
Making good use of encryption is also key for organizations. If malicious threats cannot ‘see' your data, it's more difficult for them to use it against you. According to Duo's Privacy in the Internet Trends report, 87% of web traffic is encrypted – a number that is rising all the time. However, it is less clear what percentage of enterprises' data is encrypted. Zscaler's IoT in the Enterprise found that 91.5% of traffic on enterprise IoT networks is non-SSL encrypted. These contrasting figures suggest there is a sizable gap between how enterprises generally are leveraging encryption versus major web platforms and service providers.
Are backups cyber-crime's high-value target?
One area where encryption is vital to bolster organizations' defences against ransomware and insider threats is implementing ‘nearline' encryption on data backups. The Veeam 2019 Cloud Data Management report found that over two thirds of organizations are producing backups of their data. While this is, of course, a good thing, imagine the blackmail potential for a cyber-attacker of gaining access to a backup of an organization's entire digital infrastructure?
Given that cyber-criminals using ransomware to blackmail businesses are looking for data, in theory they can find whatever they need in an organization's backed up files. These could be in all manner of forms: from system disks and removable hard drives, to offline tape devices and cloud backups. Whichever option a business chooses, the backup repository itself must be protected against attack with an ultra-resilient media type. Otherwise, there's a chance that in attempting to protect business continuity, businesses may be creating a trove of poorly protected data that could be used against them.
For some threat behaviors, this can be mitigated by encrypting backups every step of the way – from the first disk resource on-premises. Encrypting backups historically is a great idea when tapes leave the IT facility or if data is transmitted over the Internet. Given the prevalence of modern cyber-threats, encryption must take place nearer to the backing up process. The most effective technique however is resiliency in the backup data.
Securing data backups
This brings us to a conversation around ultra-resilient backup storage – the single most effective form of storage to be resilient against ransomware. There are a number of ways organizations can achieve this level of protection to ensure their data backups do not resemble a back door for cyber-attackers.
The first is utilizing offline tapes, which are a very effective air-gapped form of backup media. While tape is often purported to be an old-fashioned and inefficient storage technology, it cannot be beaten when it comes to producing highly portable, secure and reliable backups at low-cost. Much like tape, removable drives have an offline element in that they are not online unless being read-from or written-to. This makes them a preferable option when it comes to reducing the visibility of backed up files to malicious agents.
Immutable backups in the cloud, such as AWS S3 storage's compliance mode for object lock, supported by Veeam, mean backup data stored in the cloud cannot be deleted by ransomware, malicious administrators or even accidentally. This is available in the public AWS S3 offering as well as a number of S3-Compatible storage systems (both on-premises and as a public offering). Furthermore, Veeam Cloud Connect offers protection through a capability where copies of backup data can be kept completely out of bounds for customers. This is delivered through a service provider and helps end-users protect against ransomware, insider threats and accidental deletion.
CSOs are constantly weighing up a trade-off between convenience and security. While enterprises undergoing digital transformation have multiple investment needs, protecting against ransomware is critical to ensuring business continuity. Offsite and offline backups can help mitigate the effects of ransomware. Combined with the right security solutions and employee training, ultra-resilient backup for Cloud Data Management can give organizations peace of mind that they are as protected as they can possibly be even in this evolving threat landscape.
— The writer is senior director, product strategy, Veeam


Clic here to read the story from its source.