Eric Herzog<\/b>, CMO at Infinidat<\/strong><\/h3>\n“As we recognize World Backup Day 2024, the industry needs to acknowledge backup has dramatically changed so much that new critical capabilities are needed. Traditionally, enterprises have backup software to retain copies of all their data. Backup targets have usually been measured on how fast they are, their ability to reduce the amount of data backed up, and how economical they are for storage. However, with cyberattacks hitting enterprises an average of over 1,200 times per week and security analysts forecasting that impact of cybercrime on enterprise will be $9.5 trillion in 2024, it is imperative that we recognize that it is not just primary storage but secondary storage\/backup storage that is at risk as well. Cybercriminals can snatch login details for admin management, encrypt backup data, delete backup data, change backup data retention periods or make copies of the backup data to be transferred to the cybercriminal\u2019s network. This has changed everything about backup storage, demanding a new set of capabilities that combine cyber storage resilience and cyber storage recovery on secondary storage and backup platforms.<\/em><\/p>\nThe key to success is to select cyber secure backup storage. Backup storage needs to take on additional responsibilities, such as expediting near-instantaneous cyber recovery and hosting recoveries with a dual role. Even if backup storage fights off a ransomware or malware attack, the cyberattack may have already reached production data on primary storage systems. Enterprises need a dramatically higher level of cyber resilience to ensure that they are equipped to handle ransomware, malware and other cyberattacks. So, what does this mean from a technical standpoint? Cyber secure backup storage needs to incorporate the following capabilities: immutability of data, high availability, data encryption, multifactor authentication, service-oriented automation, and cyber storage resilience and recovery guaranteed SLAs. Invariably, enterprises must deploy these broader cyber storage capabilities for backup in order to deal with the incredible volume of cyberattacks.”<\/em><\/p>\n<\/div>\n
Carl D\u2019Halluin<\/b>, CTO at Datadobi<\/b><\/strong><\/h3>\n\u201cThis World Backup Day, I want to remind everyone that protecting your data with backups isn’t just a technical formality. Given the virtually unavoidable risks of ransomware, malicious or accidental deletions, and countless other threats \u2013 it’s absolutely crucial for the health of your business.<\/em><\/p>\nThe first step? Get your arms around your data. You cannot protect it, if you do not know what you have. Then\u2026<\/em><\/p>\nA well-thought-out and tested data backup strategy, together with a combination of robust data security and management solutions, can significantly enhance operations resilience. Add to that the crucial but sometimes missed step of a “golden copy” (i.e., an immutable copy of your business-critical data in a secure and remote site) and your business will be protected today, as well as ideally positioned to support business continuity well into the future.\u201d<\/em><\/p>\n<\/div>\n
Martin Zugec<\/b>, Technical Solutions Director at Bitdefender<\/b><\/strong><\/h3>\n“World\u00a0Backup\u00a0Day\u00a0is a reminder to businesses about the importance of backing up data and responding faster as ransomware attacks continue to evolve globally. Historically,\u00a0backups were not designed to address or protect against malicious intent, such as cyberattacks or intentional data deletion. Rather,\u00a0backups were created as a means to recover from accidental data loss, hardware failures, and other unforeseen events.<\/em><\/p>\nProfessional ransomware groups go to great lengths to prevent their victims from restoring encrypted data. We are seeing an increase of attacks targeting shadow volume copies or infecting\u00a0backups at later stages of the campaign. Infected\u00a0backup\u00a0can result in IT administrators inadvertently restoring adversary access to previously attacked systems.<\/em><\/p>\nNewer technology models such as Extended Detection and Response (XDR) helps detect complex attacks early by correlating threat events and behaviors across multiple environments to help shut down adversaries before they can encrypt data for ransom and\/or exfiltrate data for extortion.\u00a0<\/em><\/p>\nIt comes down to layered security, minimizing the attack surface, and using automated controls to block most security events. Identity Access Management (IAM) will continue to play an equally critical role. Just one hijacked user account can compromise all\u00a0backups, no matter where they are located. The classic 3-2-1 rule of having three copies of data on two different media, with one copy off-site for disaster recovery should be followed, but it is no substitute for a solid cyber defense.”<\/em><\/p>\n<\/div>\n
Rob T. Lee<\/b>, Chief Curriculum at SANS Institute<\/b><\/strong><\/h3>\n“How can organizations evaluate their current backup solutions for cloud compatibility?<\/strong><\/em><\/p>\nOrganizations should conduct a comprehensive assessment that includes checking for support of cloud-native APIs, the ability to handle multi-cloud environments, scalability to match cloud workloads, and robust encryption and security features that comply with cloud security standards. It’s also crucial to test the backup solution’s performance in terms of speed, reliability, and data integrity during transfer to and from the cloud. A gap analysis, comparing current capabilities with desired cloud functionalities, can highlight areas needing improvement.<\/em><\/p>\nWhat are the challenges and solutions for integrating on-premises backup systems with cloud services?<\/strong><\/em><\/p>\nIntegrating on-premises backup systems with cloud services presents challenges such as data transfer speed limitations, security vulnerabilities during data transit, and compatibility issues between on-premises hardware and cloud platforms. Solutions include using cloud gateway appliances to bridge on-premises systems with cloud storage seamlessly, employing dedicated network connections for faster, more secure data transfer, and leveraging hybrid cloud backup solutions designed to work in both environments. Adopting a cloud management platform can also simplify the orchestration of resources across the hybrid environment.<\/em><\/p>\nWhat role do automation and AI play in cloud-compatible backup strategies?<\/strong><\/em><\/p>\nAutomation and AI can significantly enhance cloud-compatible backup strategies by optimizing backup schedules based on data usage patterns, predicting potential data loss events, and automatically adjusting resources to meet backup demands. AI algorithms can improve data deduplication and compression techniques, reducing storage costs and improving backup efficiency. Furthermore, AI-driven security can help identify and mitigate threats in real time, ensuring the integrity of backup data. Automation simplifies the management of complex, multi-cloud environments, allowing for more consistent and reliable backup processes.”<\/em><\/p>\n<\/div>\n
Matt Waxman<\/b>, Senior Vice President & General Manager for Data Protection at Veritas Technologies<\/b><\/strong><\/h3>\n“Uniting data protection with data security and data governance improves cyber resilience.<\/strong><\/em><\/p>\nMalware attacks affect the entirety of IT. Multiple teams typically manage the response using disparate tools. Hackers love patchwork defenses because the interaction points can become potential vulnerabilities. An integrated ecosystem of data security, data protection and data governance is the only way to achieve gap-free cyber resilience.<\/em><\/p>\nThe cloud is not inherently safer.<\/strong> <\/em><\/p>\nIn the cloud-native era, organizations often incorrectly assume they\u2019re buying an outcome, when they\u2019re really buying infrastructure. There\u2019s a shared responsibility model between CSPs and their customers around data protection that far too many fail to understand. CSPs are responsible for the resilience of the cloud, but customers are responsible for the resilience in the cloud. You\u2019re still responsible for protecting your data.<\/em><\/p>\nToday\u2019s complex, heterogeneous, multi-cloud environments require autonomous data management.<\/strong><\/em><\/p>\nThe proliferation of applications and data from edge to core to clouds is unprecedented. Real-time manual protection is no longer possible. Reducing operational complexity through data management that responsibly harnesses AI and hyper-automation to continually self-provision and self-optimize should be your goal.\u201d<\/em><\/p>\n<\/div>\n
Bin Fan<\/b>, Chief Architect and VP of Open-Source at Alluxio<\/b><\/strong><\/h3>\n\u201cEvery year, the amount of data we produce increases significantly. World Backup Day is a call to action, urging us to reconsider our strategies for simplifying backup and recovery to keep pace with the significant increase in data production each year.<\/em><\/p>\nAs we scale the data storage, timely data movement is a necessity, whether for archiving data in more economical storage or for duplicating data to another center as part of a disaster recovery plan. However, this process can be complex and operational-heavy. We should keep optimizing and streamlining data movement across multiple storage systems.<\/em><\/p>\nOn this World Backup Day, let’s commit to exploring more efficient and effective ways to protect and manage our growing data, ensuring we’re prepared for any unforeseen circumstances that may arise.\u201d<\/em><\/p>\n<\/div>\n
Katie McCullough<\/b>, CISO at Panzura<\/b><\/strong><\/h3>\n\u201cThese days, the concept of a \u2018backup\u2019 has evolved beyond mere data preservation. It now embodies the broader and more critical notion of data resiliency. As we mark World Backup Day 2024, it’s crucial to recognize that simple backup practices alone can\u2019t be relied upon to truly safeguard our data; it\u2019s more about ensuring the availability, confidentiality, and integrity of data at a time when it\u2019s continuously under threat. Think beyond traditional backup strategies by integrating immutable data and robust security controls from the outset. This approach not only enhances data recovery capabilities but also fortifies data against cyber threats, making resilience an intrinsic part of the data recovery process. It’s astonishing, yet common, to see organizations lack clear documentation or checklists of their most critical data elements and therefore fail to put the corresponding security controls in place.<\/em><\/p>\nOne thing we get asked about regularly is our use of data \u2018snapshots\u2019<\/span>\u00a0and immutable storage. Snapshots \u2013 which we hold billions of at any given time \u2013 capture the state of a system at a particular point in time, allowing for quick restoration and minimal data loss. Immutable storage, on the other hand, prevents data from being altered or deleted after it’s written, ensuring that even in the event of a cyberattack, the original data remains untouched and retrievable. Together, they form a robust\u00a0defense<\/span>, safeguarding against data loss and enhancing the integrity and resilience of digital assets. In fact, no customer that has followed our best practice guidelines has ever lost their data.\u00a0\u00a0<\/em><\/p>\nThis World Backup Day, let\u2019s commit to a culture of regular testing and formalized data recovery plans, ensuring data isn’t just backed up but is truly resilient and recoverable in the exact form needed, exactly when needed. Let’s also not overlook the importance of data retention and disposal policies to minimize exposure and comply with evolving data privacy regulations.\u201d<\/em><\/p>\n<\/div>\n
Brent Torre<\/b>, General Manager at Kaseya<\/b><\/strong><\/h3>\n“Unfortunately for us, attackers are very smart, resourceful and relentless. Their ultimate goal in launching a ransomware attack is to get paid. They know that the majority of IT professionals generally follow basic best practices, which include backup, so the standard operating procedure for ransomware attacks is to identify if any backups are present in the environment and neutralize these backups before launching the ransomware attack. If the business can\u2019t use the backups to recover, the attacker is more likely to get paid. Maintaining immutable backups in a 3-2-1 strategy (at least 3 backup copies, at least 2 types of media, at least 1 copy offsite) not only helps keeps data safe from cyberattacks, but also other issues, including natural disasters that can compromise data integrity and damage businesses.\u201d<\/em><\/p>\n\u201cRansomware attacks are rampant, and they\u2019re wiping out businesses. Now more than ever, every business needs to assume they are at risk and act accordingly, urgently. Businesses can no longer rely on basic backup tools as a sufficient cybersecurity strategy. Bad actors are now targeting backups \u2013 stored both locally and in cloud infrastructure like Azure – in their attacks, making it harder for businesses, especially small businesses, to recover if the unthinkable occurs. World Backup Day is a great reminder that it\u2019s more important than ever for businesses to have a multi-cloud backup strategy to protect data from attackers and, ultimately, ensure business continuity.\u201d<\/em><\/p>\n<\/div>\n
George Axberg<\/b>, Vice President, Data Protection at VAST Data<\/b><\/strong><\/h3>\n“In today’s fast-paced AI era, data fuels innovation and any disruption or compromise to an organization\u2019s data can be detrimental to the business \u2013 making cyber resilience a top priority.\u00a0<\/em><\/div>\n<\/div>\n
As enterprises amass unprecedented amounts of data and pursue new projects like generative AI, safeguarding critical data while optimizing workload performance becomes paramount. A comprehensive data solution must provide scalability, extensibility, and cost-efficiency for AI workloads, alongside rock-solid security measures for reliable protection and rapid recovery of business data and applications.\u00a0<\/em><\/div>\n<\/div>\n
Mitigating risks from ransomware and other threats to AI models and application datasets requires support from a Zero Trust architecture, offering granular access control, multitenancy with strict isolation, robust encryption, key management, and intelligent threat detection capabilities. Aligning with frameworks like NIST provides a solid foundation for protecting against, detecting, responding to, recovering from, and even preventing cyber threats \u2013 which is crucial for ensuring ethical and effective technology use, including responsible AI practices. Solutions often talk about data immutability, but it’s not just about data integrity or trustworthy AI insights; it also needs to be cost-effective while staying compliant – with instant access during data unavailability being just as crucial to prevent disasters and maintain continuous operations.\u00a0<\/em><\/div>\n<\/div>\n
Data infrastructure can be an organization\u2019s biggest differentiator. By embracing an API-first architecture with seamless integration to tools for AI, analytics, data protection, and security operations, organizations can ramp up their cyber resilience, enabling smooth and secure collaboration across various platforms. Moreover, the capability to flexibly scale across on-premises, edge, and cloud environments further enhances cyber resilience, empowering organizations to optimize efficiency and reduce costs by tailoring performance and capacity to meet the demands of rigorous workloads, particularly those involving AI and data protection.\u201d\u00a0<\/em><\/div>\n<\/div><\/p>\n
Neil Jones<\/b>, Director of Cybersecurity Evangelism at Egnyte<\/b><\/strong><\/h3>\n\n
“<\/em><\/em>World Backup Day reminds us that data protection is only as good as your organization\u2019s level of cybersecurity preparedness. With more than $1 billion paid in global ransom payments in\u00a0<\/i>2023<\/i>, data backups have become mission-critical as organizations seek to recover from ransomware attacks (and other debilitating cyberattacks) in days or hours rather than weeks or months.\u00a0<\/i>The best advice I can offer is that organizations must take their Incident Response (IR) programs seriously, and a viable Business Continuity and Disaster Recovery plan needs to be a vital component of that larger IR program. Here\u2019s why: In the event of a significant cyberattack, users can\u2019t stay productive without just-in-time access to their data, and even minutes or hours of data interruption can have a major impact on employees\u2019 productivity and a company\u2019s bottom line.\u00a0<\/i><\/p>\nIn addition to protecting themselves against cyberattacks, companies struggle to manage the vast amounts of data they generate in today\u2019s AI-driven work environment while adapting to global data privacy regulations that are changing frequently. As a result, it is extremely important to test your company\u2019s backup environment regularly before a potential cyberattack, technical malfunction, or employee error that could make your data inaccessible.\u00a0<\/i><\/p>\n
On World Backup Day, I\u2019m reminded that simple, inexpensive approaches like implementing effective data protection procedures, reducing data sprawl, and restricting users\u2019 access to information on a \u2018business need to know\u2019 basis can majorly impact data security now and in the future. Another proven- and inexpensive- approach is encouraging users to take proactive steps to back up their organizational data and to \u201csay something if they see something\u201d unusual in their everyday IT environments.”<\/i><\/p>\n<\/div>\n<\/div><\/div>\n
Anthony Cusimano<\/b>, Technical Director at Object First<\/b><\/strong><\/h3>\n\n
“Looking back at the past year of evolution in the backup industry, it\u2019s become evident that backup admins are in dire need of more time and an updated strategy to ensure recovery. There are three peaks of opportunity to grant backup-minded individuals the effective tools required to secure data and peace of mind. The first is zero trust, which hasn\u2019t been appropriately applied at large when it comes to backup. However, implementing a Zero Trust Data Resilience strategy that underlines data backup systems with immutable storage, contextual authentication, and strong access controls is key for enterprises to heighten their security posture against data attacks. Next, there\u2019s encryption. Among today’s advanced ransomware tactics, adopting end-to-end encryption ensures data is locked to those without a key. Lastly, implementing immutable backups can curb malicious actors by guaranteeing that even the most privileged user can\u2019t alter or delete critical data. World Backup Day is a reminder to prioritize data protection, but taking actionable steps is how we certify that our data will be resilient against threats and disasters.<\/span>\u201d<\/span><\/em><\/div>\n<\/div>\n<\/div>\n
<\/div><\/div>\n
\n
Paul Robichaux<\/b>, Senior Director of Product Management at Keepit<\/b><\/strong><\/h3>\n\n
\n
“World Backup Day: Welcome to the backup space, Microsoft<\/b><\/em><\/p>\nWith\u00a0Microsoft announcing their release plans for their Microsoft 365 Backup service, what better time than now to share some takeaways and what I believe this milestone means for SaaS data protection now and going forward?<\/em><\/p>\nWelcome. And we kinda told you so\u2026<\/b><\/em><\/p>\nFirst off, let\u2019s give a warm welcome to Microsoft on their entrance to the backup space (well, besides trusty old Windows Backup)! As a long-time Microsoft community member, twenty-year Microsoft MVP, and Senior Director of Product Management at an industry-leading data protection vendor, I\u2019d say Microsoft\u2019s entry into the market validates what SaaS data protection vendors have long been saying about the strong need for Microsoft 365 data protection.<\/em><\/p>\nWhat have we been saying, exactly?<\/b><\/em><\/p>\nThat you need to back up your Microsoft 365 data! Microsoft is not responsible for your data, you are.<\/em><\/p>\nWhy have we been saying that?<\/b><\/em><\/p>\nWell, we know that an overwhelming percentage of Microsoft\u2019s enterprise customers have no backup. That\u2019s because Microsoft promises to not lose all your data. \u00a0<\/em><\/p>\nWith that in mind, customers\u2019 reasoning is \u2014 and I meet this in organizations all over the world, all the time \u2014 that cloud SaaS data doesn\u2019t need backup at all, because Microsoft won\u2019t lose it.<\/em><\/p>\nAnd that\u2019s simply not correct. In the backup and recovery space, we\u2019ve been trying to get that message across for many, many years. This popular perception is a real problem \u2014 to the organizations who fail to protect their data, to their customers and users, and to the communities they play a role in. That\u2019s basically all of us. Consequently, it\u2019s in the interest of all of us to bring that number down to boost cyber resilience of, say, critical infrastructure and critical services, and everything else we rely on in our lives.\u00a0World Backup Day is a good excuse to remind ourselves that we are in it together.”<\/em><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div><\/div>\n
\n
Poojan Kumar<\/b>, CEO at Clumio<\/b><\/strong><\/h3>\n<\/div>\n“Whether you’re at the forefront of developing GenAI applications or just starting to explore the possibilities, this year\u2019s World Backup Day serves as a vital reminder to evaluate and fortify your data infrastructure. It’s essential to delineate how data flows across the AI lifecycle, from the initial ingestion phase through training and inference, to the final archiving step, understanding that each phase demands specific storage solutions for optimal data handling and access.<\/em><\/p>\nSeveral questions to ask yourself:\u00a0<\/em><\/p>\n\n- Can your backup system scale from terabytes to petabytes seamlessly, accommodating diverse data lakes and object stores without sacrificing performance or agility?<\/em><\/li>\n
- Is your infrastructure equipped to manage the compliance, governance, and resilience of large datasets during the AI lifecycle, ensuring swift recovery and data integrity without slowing down the process?<\/em><\/li>\n
- For AI inference and edge computing, does your system ensure data protection across your distributed environment without latency or impacting real-time decisions?<\/em><\/li>\n<\/ul>\n
As World Backup Day approaches on March 31st, it’s a timely moment to reassess our data resilience strategies in the GenAI context. Traditional filesystem-based architectures from the VM-based world now fall short in the face of the challenges posed by data lakes, cloud-native applications, and the vast scales of AI-driven data processes. Organizations need to consolidate and optimize their disparate backup tools into a unified, serverless, and scalable platform.”<\/em><\/p>\n<\/div>\n
\n
Carlos Morales<\/b>, SVP of Solutions at Vercara<\/b><\/strong><\/h3>\n<\/div>\n“World Backup Day is a great reminder for businesses to make sure their data backup strategy is sound, provides an ability to protect previous backups from being over-written, and is exercised regularly. Nothing will halt a business in its tracks more than losing access to their data and not having an ability to recover it. This has never been as much a risk as it is now.\u00a0<\/em><\/p>\nSobering statistics from data aggregator Statistica estimates that 72 percent of businesses were affected by Ransomware in 2023 and that only 52 percent of companies recovered their data after paying the ransom. Despite increased spending on cybersecurity across the industry, percentage of companies affected continues to grow year over year. Adopting new cybersecurity solutions is only part of the answer to protecting your company. A good backup strategy can ensure that you can recover your data in the least amount of time possible even in the case of a major ransomware outbreak.\u201d<\/em><\/p>\n<\/div><\/p>\n
\n
Rob Price<\/b>, Director of Solutions Consulting at Snow Software<\/b><\/strong><\/h3>\n<\/div>\n“While we may live in a new, AI-powered world, the fundamentals and importance of backing up your data remain the same. Enterprise backup is an incredibly complex set of disciplines, including the classification of data, varying laws around data protection depending on geographic region, and requirements which may not be business-oriented but specifically relate to the sensitivity of the data in question. In addition to this, backups must also consider the various locations of data, including containers, virtual machines, archive solutions and even external systems, like Microsoft, which hold a significant amount of every organization\u2019s data; all need to be considered for backup security and integrity. This does not even begin to address the issue of shadow IT and the implications for data security if you don\u2019t know where data is being stored. The most volatile and important data at your organization should be prioritized with the fastest possible access, with the minimum downtime, but to do this, your data needs to be properly classified.\u201d<\/em><\/p>\n“Enterprise backup is an incredibly complex set of disciplines, including the classification of data, varying laws around data protection depending on geographic region, and requirements which may not be business-oriented but specifically relate to the sensitivity of the data in question. In addition to this, backups must also consider the various locations of data, including containers, virtual machines, archive solutions and even external systems, like Microsoft, which hold a significant amount of every organization\u2019s data; all need to be considered for backup security and integrity. This does not even begin to address the issue of shadow IT and the implications for data security if you don\u2019t know where data is being stored. The most volatile and important data at your organization should be prioritized with the fastest possible access, with the minimum downtime, but to do this, your data needs to be properly classified.\u201d<\/em><\/p>\n<\/div><\/p>\n
Ratan Tipirneni, President & CEO at\u00a0<\/b>Tigera<\/b><\/b><\/h3>\n
“The rapid pace of digital transformation continues to create new opportunities\u2013and threats\u2013for today’s organizations. The increasing availability of Ransomware-as-a-Service, a model which offers bad actors sophisticated vulnerability distribution while simultaneously isolating them from the risks of the trade, will lead to a worsening security situation for unprepared enterprises. This World Backup Day, enterprises and small businesses alike must remember that security is not a one-time effort; it\u2019s an ongoing process that organizations of all sizes must prioritize. As the threat landscape changes and evolves, businesses must constantly re-evaluate and adapt their security measures to stay ahead of potential threats, prioritizing key best practices like regularly backing up data.”<\/em><\/p>\n<\/div>\n
Narayana Pappu, CEO at\u00a0<\/b>Zendata<\/b><\/b><\/h3>\n
“With average data generation growing at 24.1 percent annually, organizations are spending more money year-over-year on storage, computing, and backup. Privacy regulations that mandate organizations to allow data deletion or portability only increase complexity by requiring organizations to keep multiple copies of information by user case. For example, a fintech company might allow users to delete their information and close their accounts, but they might have to keep a copy of the information for compliance and regulatory requirements. Organizations can save significant spend (a typical enterprise spends more than $10 million on backups) by using AI-enabled automation to evaluate the quality of information they are backing up, remove duplication, and ensure recovery of the most valuable data quickly in case there is an incident.”<\/em><\/p>\n<\/div>\n
Matthieu Chan Tsin, Vice President – Head of Cybersecurity Services at\u00a0<\/b>Cowbell<\/b><\/b><\/h3>\n
“In today\u2019s evolving cyber threat landscape, cyberattack techniques and tactics are more sophisticated than ever before. Companies are no longer asking themselves \u201cif\u201d they\u2019ll be attacked, but \u201cwhen\u201d, and must focus on ways to mitigate the impact of a compromise. While data backups may seem simple, they are a fundamental component of comprehensive risk management and incident response strategies.<\/em><\/p>\nThis World Backup Day, organizations should recognize the impact backups can have on:<\/em><\/p>\n\n- Data recovery<\/b>: Enterprises have access to valuable data, making them extremely vulnerable to cyberattacks. Regular backups serve as a way to restore systems following a compromise or internal failure. In case of an attack, backups can help minimize downtime when trying to recover data, ultimately reducing the impact of an attack.<\/em><\/li>\n
- Ransomware Mitigation:\u00a0<\/b>Ransomware attacks are detrimental to organizations since their internal networks are compromised, and they often have to pay\u00a0 hefty sums to recover them. By gaining access to and extracting the most valuable information, threat actors can command higher prices for the organization’s most sensitive data. Having up-to-date backups enables cybersecurity professionals to recover data and files, avoiding giving into ransom demands.<\/em><\/li>\n<\/ul>\n
By prioritizing backup solutions and practices, enterprises can enhance their resilience against cyber threats and mitigate the impact of attacks on their operations.”<\/em><\/p>\n<\/div>\n
Darren Guccione, CEO and Co-Founder\u00a0at\u00a0<\/b>Keeper Security<\/b><\/b><\/h3>\n
“Ransomware is among the most common cyber attack vectors globally, according to a recent Keeper survey of IT and security leaders. As attacks continue increasing in volume and severity, regularly backing up data to the cloud can help both enterprises and small businesses protect and restore data without having to pay a cent of ransom. Adoption of a zero-knowledge, zero-trust solution can help simplify protecting cloud backups and have the added benefit of mitigating the impact of ransomware attacks. A zero-trust security model with least privileged access and strong data backups will limit the blast radius in the event that a cyber attack does\u00a0occur.<\/em><\/p>\nWorld Backup Day reminds us that despite the growing number of sophisticated malicious actors and the ever-evolving threat landscape, strategic solution adoption and following simple best practices can protect organizations against devastating cyber incidents and mitigate the effect of a successful attack. Strong identity and access management at the front end will help prevent the most common cyber attacks that can lead to a disastrous data breach. A proactive cybersecurity strategy and prudent investment are crucial, because no organization is immune to attack.”<\/em><\/p>\n<\/div>\n
John Anthony Smith, Founder and CSO at\u00a0<\/b>Conversant Group<\/b><\/b><\/h3>\n
“Business continuity and disaster recovery (BC\/DR) is often top-of-mind for executives in mitigating risk to the business. Backups are arguably the top control in reducing the impact of the three major types of data loss events: Human error related, natural disasters, and the most destructive (but least considered) of them all: threat-actor-caused mass destruction events.\u00a0<\/em><\/p>\nThe tactics and techniques of ransomware actors have always been rapidly evolving. However, in the past two years, we have seen an increase in the rate of evolution of the complexity, speed, sophistication, and aggressiveness of these crimes. Old approaches of being alerted to “security behaviors,” then researching and responding to those threats, no longer work because dwell time is too short, and attacks are fast, aggressive, and frequent.\u00a0<\/em><\/p>\nFew companies are adequately protecting their ability to restore their systems in case of a mass destruction event; and because breaches are more destructive than ever, ensuring that backups are immutable, redundant, resilient, and all pathways to them are secure and survivable is paramount.\u202fOne challenge is that the definition of \u201cimmutable\u201d varies by product manufacturer. Many do not offer true immutability (or, the inability to delete, alter, move, or destroy data unless preset, prewritten retention expiration times are satisfied). Even if a product is immutable, there must be proper security orchestration around these backups to ensure they are isolated from the network environment and that all access to them is appropriately restricted and secured.\u00a0<\/em><\/p>\nIT and security teams must encourage and enhance backup protocols when it comes to protecting the organization\u2019s valuable data because once data is lost forever, many companies never recover. Security should work backwards in the breach progression. Threat actors work with the end goal of encrypting and destroying backups and production data in mind to leave organizations with few options; so security should begin by ensuring resilience. Once backups are secured against threat-actor-caused mass destruction events, the organization is also properly secured against human error and natural disaster scenarios, ensuring a stronger BC\/DR stance.”<\/em><\/p>\n<\/div>\n
Glenn Gray, Director of Product Marketing at\u00a0Auvik<\/b><\/b><\/h3>\n
“IT teams face a daily onslaught of requests, tickets and other maintenance activities, and configuration backups are not always at the top of the list of priorities. However, network backups are imperative to business compliance, continuity and profitability. According to new data that will be published on April 4, there is a significant discrepancy between perceptions of the C-suite and IT technicians when it comes to network configuration backups. In a survey, C-suite respondents were more likely to report daily configuration backups (36 percent) compared to technicians (20 percent). The discrepancy indicates that either management is not aware of the real amount of work going into configuration management tasks, or technicians are simply too time-strapped and over-burdened to adhere to company policy when it comes to network backup frequency. The latter is highly likely, as another part of the research also indicated that configuration backups is one of the most commonly outsourced network related tasks\/activities, with 42 percent of respondents indicating this is outsourced. Other parts of the research point to a lack of skilled workers and difficulties with hiring as a critical challenge facing IT teams this year leading to even more capacity issues.<\/em><\/p>\n
![\"\"](\"https:\/\/solutionsreview.com\/backup-disaster-recovery\/files\/2024\/04\/MicrosoftTeams-image-2.jpg\")
<\/p>\n![\"Download](\"https:\/\/solutionsreview.com\/backup-disaster-recovery\/files\/2020\/02\/DRaaS_SB_BG_800.gif\" "\\"DRaaS")
<\/a><\/p>\n<\/div>\n\t\t<\/div><\/div>\n