Ransomware is on the rise and here to stay. It’s why organizations are scrambling to develop plans and adopt solutions to protect their company from this threat.
Are current backup and recovery best practices good enough?
Gartner recently issued their guidance on how organizations can protect themselves against ransomware. (Source: Gartner, Use These Five Backup and Recovery Best Practices to Protect Against Ransomware, June 2016) which offers a solid starting point. The analysts describe the current situation, pointing out the limitations of antivirus software and detailing just how easily ransomware can spread.
To combat this pervasive threat, Gartner recommends the following steps.
- Assemble Crisis Team: Ensure that your organization has a single dedicated crisis management team.
- Perform Regular Backups: Implement an enterprise endpoint backup product to protect user data on laptops and workstations.
- Document Storage Locations: Build a list of storage locations that users can connect to that are inherently vulnerable, such as file shares.
- Evaluate the Risk: Evaluate the potential business impact of data being encrypted due to a ransomware attack, and adjust recovery point objectives (RPOs) to more frequently back up these computer systems.
- Create a Recovery Plan: Align with the information security, IT disaster recovery and network teams to develop a unified incident response that focuses on resiliency, not only prevention.
Why Ransomware is no match for DRaaS
As Gartner correctly notes the primary goal when responding to a ransomware attack is “to leverage newer backup methodologies to achieve more frequent recovery points.” Their guidance is just to back up more often.
But, what’s missing from this guidance is the role cloud-based disaster recovery as a service (or DRaaS) can play in restoring uptime and getting your users back to business. Here are two reasons why you should invest in a DRaaS solution.
- #1 It’s all about protecting your network. With cloud backup solutions, you can restore individual files and folders, but they are not designed to restore entire networks. Modern DRaaS solutions backup files, folders, and VMs which enables CISO and IT administrators to quickly restore and failover applications in minutes.
- #2 Minimizing Ransomware Downtime costs. The reason DRaaS is so important in recovering from a ransomware attack is the speed in which files and systems can be recovered and how those systems are recovered. If thousands of files have been infected – which is now a ransomware reality — then restoring these files with a cloud backup solution from clean, uninfected versions will take time to download (depending on the amount of data and size of your internet pipe) and reconfigure. And it’s this time lag that can crush a business if it lasts for an extended period.
By not having to copy data back to your production environment and rebuild the infected machine, DRaaS can be a huge time saver to restoring productivity and operational resiliency. DRaaS allows organizations to stand-up their systems in minutes because it does not rely on a two-step approach of recovering a machine and then recovering programs and data.
With DRaaS, IT administrators can restore and virtualize complete, running systems from local or cloud-replicated backups. This keeps users productive while your recovery team can work to identify and eradicate the malware. Recovery is now measured in minutes vs. hours or days.
How to Eliminate Ransomware Downtime Costs
A good recovery plan must now include protecting your entire environment and mitigating ransomware downtime costs, so that companies can get back to work quickly. Cloud-based DRaaS solutions meet these needs simply and affordably. Check out our on-demand webinar “Best Practices to Safeguard your Data against Ransomware“: