By Sudharsan Aravamuthan, Head – Systems Engineering, India, Pure Storage
As businesses become increasingly data-driven, the importance of protecting data from loss, corruption, and theft becomes a C-level priority. Malware is a leading cause of data loss, and ransomware, which locks data with unbreakable encryption and renders it useless, is among the most common forms of malware. Most ransomware attacks now involve the theft of personal or sensitive commercial data for the purpose of extortion, increasing the cost and complexity of incidents, as well as bringing greater potential for reputational damage.
Additionally, new regulations are calling for greater operational resiliency and therefore faster recovery times in case of disasters, even ones such as ransomware attacks. World Backup Day, observed on 31st March, serves as a valuable reminder for the need for effective data backup, recovery strategies and protection protocols. Effective data backup solutions can help mitigate the risk of data loss and significantly speed up data recovery.
Downtime is the biggest nightmare for modern businesses
Downtime is the most costly aspect of a ransomware attack, as any outage can result in dire financial and reputational consequences. As per a recent report on cybersecurity, cyberattacks continue to be the number one reason for downtime which makes security measures all the more important for organisations. Another survey highlights how unplanned downtime costs Indian industries INR 7 million per hour. Given the enterprise-wide disruption that can occur in the wake of a ransomware attack, it’s vital that organisations put technology and processes in place to protect themselves.
Safeguard data to secure business
Backing up data remains critical for data protection, but it’s not enough. Implementing advanced data protection capabilities helps companies better plan for – and recover quickly from – ransomware and cyberattacks. This essentially requires a two-pronged approach: taking regular, “immutable copies” of data, and having the necessary infrastructure to rapidly restore from backups at speed and scale.
In the event of a cyber attack or any other event that compromises data or disrupts operations, companies can recover critical data from their immutable copies so that they can restore operations quickly—without having to succumb to the demands of cyber criminals. Proper immutability means these copies cannot be encrypted, or even deleted by attackers. Modifying them in any way, or the frequency of which they are used, is protected with multi factor authentication and therefore safe from hackers. This makes them far more resilient and reliable in the event of a cyber attack.
Next comes the ability to restore data as fast as possible, as reliable backups are limited in their effectiveness if operations cannot be restored quickly. Some of the most advanced flash-based storage solutions dramatically increase the speed of data restoration. The leading solutions boast a recovery performance of up to many hundreds of TBs per hour at scale, enabling organisations to restore systems in hours—rather than weeks, so they can get up and running again with minimal impact.
The ability to swiftly restore critical services is quickly becoming mandatory in some regulated industries. India mandates the National Cyber Security Policy which entails policies that regulate data exchange to improve the protection of India’s cyber ecosystem. As a step to future proof this, the policy also aims to create a workforce of over 500,000 expert IT professionals over the following five years through skill development and training. It is likely that we will see more countries and industries mandating quick recovery of critical services.
Ransomware recovery SLAs now part of the Solution
Protecting your data should be a major concern, however, be careful not to overlook other critical factors in the aftermath of a ransomware attack. For example, affected arrays could become off-limits and unusable. Following an attack, storage arrays are often locked down for forensic investigation by cyber insurance or law enforcement agencies, leaving organisations unable to recover data to infected arrays. Without a data storage infrastructure to get systems back up and running, organizations are stuck.
Thankfully, there are now solutions on the market that can mitigate this risk. Some vendors can offer ransomware recovery SLAs, on top of an existing STaaS subscription, to guarantee a clean storage environment with bundled technical and professional services in the wake of an attack. In practice this means being able to deliver a completely new storage environment in a matter of hours to recover from, should the original one be unavailable for any reason. This kind of guarantee can give businesses the peace of mind that they can recover safely, faster, even if arrays are locked down following an attack.
The Key to organisational success is resilience and agility
Modern data threats require modern data protection solutions. This World Backup Day casts a timely reminder for organisations to re-evaluate their approach to data security. It’s critical that organisations double down on building resilience and agility across their organisation. By future-proofing critical IT infrastructure and implementing a modern data protection strategy with effective processes to safeguard and restore data, organisations can avoid cybersecurity and downtime nightmares.