Unfortunately, ransomware is impacting businesses of all sizes across the globe. This means that critical systems and applications are encrypted by malicious actors and will only be decrypted if a ransom is paid. This will effect all but the most prepared enterprises, and as recent reports show, even prepared businesses can suffer. Offline backups of business critical information can be make or break when it comes to mitigating a ransomware attack. However unfortunately, some backups are still vulnerable to encryption. In order to provide an education for companies, the UK‘s National Cyber Security Centre (NCSC) has issued updated guidelines on how to deal with ransomware.
With this in mind, several cybersecurity experts have used their experience in order to help businesses and consumers protect their most precious information:
Bill Santos, President, Cerberus Sentinel
While offline backups are certainly an important part of any business continuity strategy, they provide limited protection to sophisticated ransomware attacks, as many actors delay activation until their code has been deployed in an environment for an extended period of time (often months), allowing for their code to infect even offline backups. Restoring from an offline copy simply re-installs that software into the environment, only to be re-activated.
Martin Jartelius, CSO, Outpost24
This has been something stressed for a long time by security organizations, a backup should be protected against getting overwritten, and offline- offsite backups are a strong recommendation, both to ensure a capability to restore and the integrity of the information.
Similarly, ensuring that th ..
Support the originator by clicking the read the rest link below.
