Increasing Operational Efficiency With Kasten K10 V6.0

Image
We are excited to announce the release of Kasten K10 version 6.0, the latest and most advanced version of our industry-leading platform that provides enterprise-grade Kubernetes data protection and application mobility. This release helps customers scale their cloud native data protection efficiently. Kubernetes deployments are growing at an unprecedented rate. Gartner predicts that by 2027, more than 90% of global organizations will be running containerized applications in production. However, today’s market conditions are scarred with financial uncertainty and a shortage of cloud native skills. Therefore, you must ensure operational efficiencies are in place to unleash the full potential of your cloud native environments while protecting your data. Additionally, security remains an imperative as organizations focus on keeping their businesses running. With this release, we also continue to innovate in this growing ecosystem, so that you can take advantage of the best-of-breed inn...
Post a Comment

Debunking Some Dangerous Ransomware Myths… Here’s What You Need To Know

The prevalence of cyber threats and ransomware is create a lot of fear, uncertainty, doubt and lies. Possibly the biggest area of misunderstanding is how ransomware interacts with systems and infrastructure.

You are probably reading about new threats like Money Message, Maze, or many others and you want to be prepared. The first victim when you are dealing with cyber resilience is often the truth. 

What Do We Know?

We’ve seen a lot of incorrect information circulating around payload behavior of these threats. This behavior includes disabling critical services on a system such as anti-virus platforms and database platforms. Additional behavior includes terminating common applications such as text editors and collaboration applications. Myth debunked: Any ransomware payload is in the business of interrupting normal infrastructure behavior.

What Is the Problem?

Most ransomware payloads are deployed through one or more (usually a combination) common entry points such as phish email, exploiting a vulnerability, taking advantage of remote access among the top offenders. If you are not familiar with the MITRE ATT&CK framework, this outlines some of the behaviors once a threat actor is underway. This ransomware payload on a network will then look to impact the infrastructure. Myth debunked: The problem is that a threat actor has access to a network with privileges and is deploying a payload.

What About My Veeam Infrastructure?

Veeam is very flexible in its deployment, but the takeaway is ensuring your infrastructure is implemented well. Here are some great starting points:

Myth debunked: Veeam has a self-describing portable data format. Even if all other protections fail, an immutable, offline or air-gapped copy of data can drive recovery with no prior knowledge of the source infrastructure. Additionally, Veeam can easily recover to a new infrastructure such as the public cloud.

What Does Veeam Do To Detect Ransomware?

Short answer, a lot. See the following resources:

Veeam ONE: Configure, Notify, Action: Veeam ONE’s ransomware detection | Veeam Community Resource Hub

SureBackup Scans: How to Scan Backups for Ransomware – Veeam

Veeam Recovery Orchestrator Ransomware Scans: How Orchestrator Performs Ransomware Scan – Veeam Disaster Recovery Orchestrator User Guide

Fancy automation? You can use the Data Integration API and Publish PowerShell Cmdlet, which can allow scanning with your anti-virus platform of choice upon the backup data under management by Veeam.

And there is always Secure Restore: How to improve security with Veeam DataLabs Secure Restore.

Additionally, there are a number of projects underway to further bring more Veeam capabilities to market. In the meantime, you can view the recent Ransomware Recovery Summit and attend VeeamON for a solid block of ransomware content (including content online now for on-demand virtual attendees). Myth debunked: Veeam provides freedom of choice in what is used for detection in conjunction with an organization’s standard cybersecurity practices while at the same time providing the ability to leverage the backup data for detection.

What Can I Do About This?

Our advice is to follow the advice we bring to market. Talk to your Veeam rep, talk to your partner and take steps to ensure you’ve implemented well and are ready to drive data recovery. We have had the capabilities in the market for a number of years to keep data safe from ransomware, and we took it to the next level with V12. So much so, we now have the Veeam Ransomware Recovery Warranty. The advice we are bringing to market works. I speak with the Veeam Critical Incident support team (where ransomware cases go) often; and the advice they give me, I relay right back out to the market. If you haven’t upgraded to V12, check out the V12 Upgrade Center where you can get started today.

I’ll Say It Again: The Truth Matters

There are a number of ransomware threats out there, and the reality is that the data indicates that a cybersecurity incident is much more likely to occur than ‘traditional’ disasters such as fire, flood and blood. Veeam is in the business of keeping your business running. The Veeam Data Platform is in place to give you Data Security, Data Recovery and Data Freedom when you need it most.

For more on Veeam and Ransomware – join our Ransomware Summit.

The post Debunking Some Dangerous Ransomware Myths… Here’s What You Need To Know appeared first on Veeam Software Official Blog.



Original post here: Debunking Some Dangerous Ransomware Myths… Here’s What You Need To Know

Comments

Post a Comment

Popular posts from this blog

How To Migrate a Veeam Backup & Replication Configuration Database to PostgreSQL

Image
Before Veeam Backup & Replication v11, the product used SQL Server to create and store its configuration database. It has always been possible to use SQL Server Express to store a Veeam Backup & Replication, however, this version of SQL Server had some critical limitations. In the 2022 version of SQL Server Express, the most relevant limitations were: Use of one socket or four cores Use of only 1.4GB per instance 10GB limit for databases In an environment of 500 machines or fewer, these limitations may not have an impact, but if you have a large backup environment, you had to migrate to one of the paid SQL Server versions to avoid these limitations. You can check the limits for each version of SQL Server 2022 by clicking this link . For V12 and with scalability, performance and licensing cost in mind, Veeam introduced the possibility of using PostgreSQL as a configuration database. PostgreSQL is a relational database management system that’s been used for over 35 years...
Read more

How to use a SOBR with Veeam Backup & Replication

Image
For those of us who have been in the business of backing up data for a while, we’re used to making copies of data on different types of media. I won’t date myself by mentioning reel-to-reel tapes, but the journey started with tape and then backing up data to block/file-based disk storage came along. More recently, a new kid on the block has become a popular destination for backed up data, object storage. Veeam started to use object storage as a target when we released Veeam Backup & Replication 9.5 Update 4 in January 2019 by introducing our use of AWS S3 compliant object storage via the Capacity Tier. A year later, we launched Veeam Backup & Replication v10 which featured support for object locking to provide data immutability for object storage. Immutability provides protection from ransomware attacks by locking the objects which prevents them from being modified or deleted by malicious software or humans. Today, Veeam Backup & Replication is protecting hundreds of petab...
Read more

Installing Ubuntu Linux for Veeam Hardened Repository

Image
In this second part (the first part can be found here ) of setting up and hardening a Veeam “hardened repository,” I will cover how to set up Ubuntu 20.04 in a secure way. While it’s “just a minimal installation,” I have seen many questions on this topic, so let’s clear some things up. Before we start, let’s recap the requirements: A RAID 1 for the operating system on SSDs with at least 100 GB disk space A RAID 6/60 for the backup data Static IP address, gateway and DNS settings Recommended: redundant network connection Switchport: untagged UEFI Secure Boot is enabled With all environmental preparations done, we can now download Ubuntu 20.04. Download Download the latest Ubuntu 20.04 ISO from the Ubuntu website. At the time of this writing, that was the ubuntu-20.04.5-live-server-amd64.iso. The latest ISO ensures that the Linux kernel is as new as possible to support newer hardware. Technically you can also use Ubuntu 22.04, but there are currently no DISA STIGs (Securit...
Read more