cnl83

<div>
&quot;everyone resorting to rotating backup drives?&quot;<br />
<br />
Huh? &nbsp;This is a best practice - rotate backup media... why wouldn't you &quot;resort&quot; to it? You should have offsite and offline backups.
</div>


"everyone resorting to rotating backup drives?"

Huh?  This is a best practice - rotate backup media... why wouldn't you "resort" to it? You should have offsite and offline backups.

<div>
Lee, we have onsite and offsite backups as a rule of thumb. The problem with rotating backup drives is that employees eventually forget to rotate, and sometimes quit rotating them all together. I was just see if there is a better way.
</div>


Lee, we have onsite and offsite backups as a rule of thumb. The problem with rotating backup drives is that employees eventually forget to rotate, and sometimes quit rotating them all together. I was just see if there is a better way.

<div>
Thanks for your input, thats exactly what I wanted to verify.
</div>


Thanks for your input, thats exactly what I wanted to verify.

<div>
Thank you for the update and I was pleased to help you.
</div>


Thank you for the update and I was pleased to help you.

<div>
So I assume you're using modern technology (virtualization). &nbsp;If so, you backup the VMs. &nbsp;I use Hyper-V and replicate to another server. &nbsp;From the other server, I run backups. &nbsp;No user has access to the hyper-V hosts so neither does ransomware. &nbsp;Plus I replicate off-site and run seprate backups. &nbsp;If your data is important you do EVERYTHING you can within reason. &nbsp;It's insurance. &nbsp;And while you may be the safest, everyone else are risks to your safety so you have to be prepared.
</div>


So I assume you're using modern technology (virtualization).  If so, you backup the VMs.  I use Hyper-V and replicate to another server.  From the other server, I run backups.  No user has access to the hyper-V hosts so neither does ransomware.  Plus I replicate off-site and run seprate backups.  If your data is important you do EVERYTHING you can within reason.  It's insurance.  And while you may be the safest, everyone else are risks to your safety so you have to be prepared.

<div>
Had to add a very easy fix for almost all ransomware that tries to encrypt your backups: have you backup nas use a username/password to access the share. Run your backup software with This user. Only give permission to our backup software user, not your main user. <br />
<br />
So many times I've seen the nas be an open share because that's the easy default setup, so the ransomeware can easily encrypt the backups. <br />
<br />
Of course, cloud/off-site is still a good idea, but this simple change can make recovery much faster.
</div>


Had to add a very easy fix for almost all ransomware that tries to encrypt your backups: have you backup nas use a username/password to access the share. Run your backup software with This user. Only give permission to our backup software user, not your main user.

So many times I've seen the nas be an open share because that's the easy default setup, so the ransomeware can easily encrypt the backups.

Of course, cloud/off-site is still a good idea, but this simple change can make recovery much faster.

<div>
<div class="content wysiwyg-content">
What are the best practices in light of ransomware attacks. I've had a few local non rotating backups get bricked because of ransomware. I do have remote backup, but is everyone resorting to rotating backup drives?
</div>
</div>


What are the best practices in light of ransomware attacks. I've had a few local non rotating backups get bricked because of ransomware. I do have remote backup, but is everyone resorting to rotating backup drives?

Best backup practices in light of ransomware encryption on external drives

Ransomware is malicious software, designed to block data access in order to extort money. As a form of malware, ransomware is most often used to infiltrate devices through infected emails or links that, in turn, recognize and take advantage of vulnerabilities in the operating system and installed third-party software.

Ransomware

Disaster Recovery is the planning for and creation of policies and procedures related to the resumption or continuation of an organization's functions following a catastrophic event. The term is most frequently used in relation to failure of networks, but DR preparations also include other business systems and personnel considerations.

Disaster Recovery

The term "Backup" means the methods and processes involved to copy computer data (system data as well as application data) to media other than the ones where the data originally live (disk, tape, optical, cloud). "Restore" in turn means the methods and processes involved in data recovery, i. e., bringing back copied computer data to their original location. Backup/Restore primarily serves as a means of protection against data loss, be it due to disaster, corruption or sabotage. It can also be used for recovering data from an earlier point in time and even for cloning machines or applications. There is a wide variety of backup/restore software available, from expensive commercial products to free or open source tools.

Storage Software

The cyber security specialization covers the fundamental concepts underlying the construction of secure systems, from the hardware to the software to the human-computer interface, with the use of cryptography to secure interactions. Cyber security refers to the protection of personal or organizational information or information resources from unauthorized access, attacks, theft, or data damage. This includes controlling physical access to the hardware, as well as protecting against the harm that may come via network access, data and code injection, and due to malpractice by operators, whether intentional, accidental, or due to them being tricked into deviating from secure procedures.

Cyber Security

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.

Networking

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Veeam® has pioneered a new market of Availability for the Always-On Enterprise™ by helping organizations meet recovery time and point objectives (RTPO™) of less than 15 minutes for all applications and data. Veeam develops backup, disaster recovery and virtualization management software for VMware and Hyper-V virtual environments. The company focuses on products that help with virtualized workloads, reduce downtime, and ensure the system Availability required by service-level agreements.

Veeam

Storage devices include any device used for storing and retrieving digital information. Hard disk drives (HDDs) use one or more rigid ("hard") rapidly rotating disks (platters) coated with magnetic material. Data is accessed in a random-access manner, meaning that individual blocks of data can be stored or retrieved in any order and not only sequentially. The primary competing technology for secondary storage is flash memory in the form of solid-state drives (SSDs), but HDDs remain the dominant medium for secondary storage due to advantages in price per bit and per-device recording capacity. CD-RW (Compact Disc-ReWritable) is a digital optical disc storage format that allows information to be stored outside the mechanical HDD.