Skip to main content
  • Industry Solutions
    • Managed Service Providers
    • Enterprise Solutions
    • Developers & Startups
    • Healthcare
    • Trading and Financial
      • Chicago Managed Trading Servers
      • Trading and Financial Colocation: Chicago & New Jersey
    • IBM AS/400 and iSeries Users
  • Support
    • Register
    • View Tickets
    • Submit a Ticket
    • Knowledgebase
    • News
  • Steadfast Blog
  • Steadfast Podcasts
  • Contact Us
Home
  • Call Us
  • Call | 888.281.9449
  • Login
  • Search

This form logs you into your management portal account. To access your help desk account, click here and use the form to the right of the news.

  • Cloud Hosting
    • Cloud Hosting
    • Private Cloud
    • Hybrid Cloud
    • Public Cloud
    • Cloud Storage
      • Secure File Share
      • Wasabi Cloud Storage
    • Virtual Data Center Platform
  • Managed Hosting
    • Bare Metal Dedicated Servers
      • Deep Learning GPU Dedicated Servers
      • Linux Dedicated Servers
      • Windows Dedicated Servers
    • Virtual Private Servers
    • Data Center Colocation
      • Managed Colocation
      • Chicago: 350 E Cermak
      • Chicago: 725 S Wells
      • Edison, New Jersey
    • Security & Compliance
      • Managed Firewall
      • SSL VPN
      • DDoS Protection
      • Email Security
  • Backup & Disaster Recovery
    • Backup
    • Disaster Recovery
    • Veeam Backup & Replication
    • Veeam Cloud Connect
    • Wasabi Cloud Storage
  • Why Steadfast
    • Why Steadfast?
    • About Steadfast
      • Our History
      • News and Press
    • Data Centers & Network
      • Our Data Centers
      • Our Network
      • Network Test
      • Peering Policy
    • Customer Stories
    • Service Level Agreement
  • Industry Solutions
    • Managed Service Providers
    • Enterprise Solutions
    • Developers & Startups
    • Healthcare
    • Trading and Financial
      • Chicago Managed Trading Servers
      • Trading and Financial Colocation: Chicago & New Jersey
    • IBM AS/400 and iSeries Users
  • Support
    • Register
    • View Tickets
    • Submit a Ticket
    • Knowledgebase
    • News
  • Steadfast Blog
  • Steadfast Podcasts
  • Contact Us
Close
Return to All Blog Posts
Are Your Backups Safe From Ransomware Attacks

Are Your Backups Safe From Ransomware Attacks?

October 25, 2017 in
Disaster Recovery

Backups are the last line of defense against ransomware attacks. It would be better if ransomware never found its way onto servers in the first place, but once it has, victims have only three options: accept that their data is gone for good, suffer the indignity of paying a ransom, or restore the servers from a backup.

In fact, even those who pay can’t guarantee that they will get their data back. Recent attacks have encrypted the data, taken the money, and run. There was no code in the malware capable of decrypting the data. That makes backups even more vital — it’s best to assume that a backup is the only way to save data from a ransomware attack.

But not all backups are good backups, and ransomware authors are creating more sophisticated software that is capable of finding local and remote backups and encrypting that data too. On many occasions, I’ve spoken to server hosting clients who keep backups of critical data on the same drive as their production data. At best, they keep it on another drive in the same machine.

A backup on the same disk might help if something goes awry with a production database. A backup on a second disk attached to the same server protects against the consequences of a drive failure. Neither protect against smart ransomware capable of combing through every drive on the machine.

What about a remote backup to a different server? It’s better than a local backup, but it won’t necessarily stymie sophisticated ransomware. If the backup volume is mounted on the local server’s file system, ransomware can find and encrypt it. It’s common to back up to network file servers, but if ransomware can find the volumes, the data is at risk.

The best solution is offsite backups to servers that don’t remain constantly connected to production servers. Backup servers should not be easily reachable from front-line servers and credentials for connecting to backup servers should not be easily discoverable.

It’s important to make sure that backups are comprehensive. Many of the victims of the Petya ransomware had backups of critical data. It would be grossly incompetent for them not to have planned for just such an emergency. But critical data may not be enough to get services up-and-running quickly. Comprehensive server backups that allow for a quick restoration of the data and its environment may have allowed victims to be up and running in hours, not days or weeks.

Once a solid off-site backup strategy is in place, it should be regularly tested. There are many reasons a backup might silently fail. The only way to know for sure that data is backed up and safe is to regularly check it and run test restores. The worst situation is to think you’re safe, only to find out that your backups don’t exist when you need them the most.

Backups are the best way to guarantee that ransomware doesn’t deprive your business of its data, but the only effective backups are remote, comprehensive, and up-to-date.

Share This
facebook twitter email compact

Comments (0)

Leave a Comment

Get an image next to your comment by visiting Gravatar.com and uploading a profile photo that links to your address.

Search the Blog

Categories

backup
(1)
bare metal
(1)
Business Talk
(23)
Chicago
(11)
Chicago colocation
(1)
Cloud
(34)
cloud backup
(1)
cloud services
(2)
colocation
(4)
colocation services
(1)

Archives

  • August 2022 (1)
  • March 2022 (3)
  • October 2021 (1)
  • January 2021 (1)
  • July 2020 (1)
  • June 2020 (1)
  • April 2020 (1)
  • March 2020 (1)
  • August 2019 (1)
  • July 2019 (1)

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • RSS Feed
  • 312.602.2689
  • ColoHouse Sales
  • Facebook
  • Twitter
  • YouTube
  • LinkedIn

Services

  • Cloud Hosting
  • Managed Hosting
  • Backup & Disaster Recovery

Solutions By Industry

  • Enterprise Solutions
  • Trading & Financial
  • Healthcare
  • Developers & Startups
© 2023 Steadfast
  • Log In
  • Site Map
  • Legal Info & Privacy Policy