Solved

What is a simple way for a home user to backup and be able to recover from a future ransomware incident?

Posted on 2016-08-18
7
48 Views
Last Modified: 2016-09-12
I have all my business clients on systems that work to prevent the issue and recover easy if the prevention was unsuccessful.
But say you have many home users (friends, family etc) with a single backup drive and no budget.
Currently I've experimented with setting the permissions on their backup drives to the "administrator" account only, so that even the people that insist on being a local admin user can't access the backup drive (cryptolocker won't be able to also).

But in the case of an RDP attack the scammer will just reset passwords/permissions or nuke the backup drive.

What to do ?
0
Comment
Question by:Lee Hux
7 Comments
 
LVL 12

Accepted Solution

by:
Benjamin Voglar earned 83 total points (awarded by participants)
ID: 41762019
The simples way for home users is Cloud. Cloud product have previus versions. And for Companies, files server 2012 or later with privius versions enamblet on it.

Oh and NO, you can not make access only for backup SW and not for local admins.
0
 
LVL 17

Assisted Solution

by:Malmensa
Malmensa earned 83 total points (awarded by participants)
ID: 41762026
For home users, I sometimes just advise them to obtain a couple of $10 USB keys, and try to get in the habit of copying anything important to them manually. Optimally, one should be kept in a separate building.  Only works for somewhat computer literate users, and requires a little work of course.

Hackers will not be able to do much to a copy kept in the users drawer at work.
0
 
LVL 13

Assisted Solution

by:akb
akb earned 83 total points (awarded by participants)
ID: 41762041
Using Dropbox will keep versions - one month for the free version.
The problem with a single backup device is that if it is plugged in when the ransomware strikes you will lose your backups as well.
0
U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

 
LVL 48

Assisted Solution

by:dbrunton
dbrunton earned 83 total points (awarded by participants)
ID: 41762146
There are two questions here although it may not seem so.

In the case of data (My Documents and such) external backup drives (or flash drives) that are rotated and kept off site.  Say three drives (two off site and one local) and change them over once a week.  Off site could be at home or in the garage in a fireproof lockable box but as long as not in the same building as computer system.  But preferable another building in another locality.  You then have to arrange an easy method to update the backup disk which could be as easy a couple of batch files or purchasing a backup utility.

Now for the computer system.  An image should be taken of the whole drive and stored off site.  If the computer is hacked badly then the image can be restored to the computer system and then the data transferred back.  You should think of offering this as a service to your clients.
0
 
LVL 88

Assisted Solution

by:rindi
rindi earned 84 total points (awarded by participants)
ID: 41762152
Have them get at least another disk to backup to. Personally I recommend using a USB dock rather than buy a USB disk. Docks aren't expensive, and they are flexible in the type of disks they accept (most of them can take both, 2.5" laptop disks, as well as 3.5 desktop disks):

http://www.newegg.com/Product/Product.aspx?Item=N82E16817182307&cm_re=usb_disk_dock-_-17-182-307-_-Product

Then get a couple of cheap 2nd hand disks through an auction site like ebay. That should be affordable even for low budget users.

Then teach them rotate between those disks after every backup. Also teach them to remove the disk from the dock after the backup has finished, or power off the dock, so should something happen to the PC, the backup can't get touched.
0
 
LVL 27

Assisted Solution

by:tliotta
tliotta earned 84 total points (awarded by participants)
ID: 41768565
Cheap 2nd-hand/refurb disks are useful. Every once in a while, one goes bad; but they can be cheap enough to buy multiples. I've used many over many years and only had one problem. Whenever I want one, I always buy two; so I've built up a small inventory. Handy for keeping spare images in addition to having emergency spares.

But "home users (friends, family etc)"? I've had far more problems getting them to grasp and implement various safe practices than I've had with 2nd-hand drives. And I've had far better luck getting some of them to convert completely to Linux Mint than getting them to stop some of their habits. None that I've converted in the past couple years have asked to go back to Windows. One was set up with a Windows/Mint dual boot a couple years ago. Except for showing how the dual boot works, the Windows partition has never been used since.

With either Wine or Windows in a VM, even a case where a Windows app is required can be handled. Linux Mint is about as easy as it currently gets for conversion for basic Windows users.

Best of all, I haven't been bothered every month or two by any of the converted ones to fix some Windows problem caused by poor practices. The worst problem I've had to address is giving one more demo of how the Mint update manager works and assuring that it really doesn't need to be shut down and rebooted just to get updates applied.

Anyway, aside from that, the question is how to do safe backups with small, or zero, budget. Well, Linux is a good start since it can be installed and kept up to date with zero budget. And backups can have the same zero cost (except hardware, as with anything). Backups can scheduled as needed. Also, access to backups and backup software can require manual input of the admin password.

Although there has been at least one ransomware threat seen in the wild that affects Linux, it seems only to affect web servers, so most home users wouldn't likely be affected much (even if they're infected).

In short, best I'd do for "home users (friends, family etc)" to protect against ransomware and most other viruses, trojans, etc., and to allow decent backups and to keep costs to a minimum is convert them to Linux Mint. Another distro might work out better for you
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Runas admin but use local user profile 3 36
DVD or CD-Rom Useage history in Windows event viewers 8 36
Cygwin - GNU GPL License 1 24
Thoughts on PC Doctor 11 48
Provide an easy one stop to quickly get the relevant information on common asked question on Ransomware in Expert Exchange.
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
As developers, we are not limited to the functions provided by the VBA language. In addition, we can call the functions that are part of the Windows operating system. These functions are part of the Windows API (Application Programming Interface). U…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question