Fix missing path and delete a Veeam Backup Repository

In this article, we shall discuss how to “fix missing path and delete a Veeam Backup Repository”. When your Backup Repository is in an invalid State, please see the possible causes and troubleshooting advice. Also see how to install Splunk and Veeam App on Windows Server to monitor VBR, and the “Deep Dive into Protecting AWS EC2 and RDS Instances and VPC“. On a Veeam Backup and replication…

Backup As a Service

Backup refers to the copying of a device’s storage and internal files and store it somewhere else so that no information is lost in case some damage is incurred by the said device, usually a Server or a laptop. Backup prevents complete data loss which prevents permanent loss of sensitive and private information. Information repository models are used to provide structure and depth to the data that must be backed up and sort out of the same. The main concepts of Backup are:  Recovery Point Object (RPO)  Recovery Time Object (RTO)  3-2-1 Backup Rule o Keep at least three (3) copies of data. o Store two (2) backup copies on different storage media. o Store one (1) backup copy offsite.  Security Role Based Access Control (RBAC)  Encryption IMMUTABILITY Immutability is a solution that prevents data deletion from the capacity or archive extent. To prohibit data deletion, Veeam Backup & Replication makes it immutable by applying the Object Lock technology provided by Amazon and some S3-Compatible providers.  Backup as a Service or BaaS is a modern-day initiative or attempt that involves the purchase of backup and recovery services from an online provider. This removes the complexity of managing the infrastructure, software, security of the backup. Instead of data being managed by a centralized system, an outside private, public or hybrid provider manages the content. BaaS may be used when an organization has outgrown its legacy storage backup and would have to go through a costly upgrade, or lacks the resources for on-premises, high-level backup. Outsourcing backup and recovery to a provider can also keep data accessible or restorable from a remote location in case of an outage or failure. Orient Technologies as a Good BaaS Provider  Recovery support – Orient Technologies provides regular knowledge of the customer’s data and round the clock data recovery through a Service Dashboard with support via chat, email, or call. In case of any disruption, the BaaS would be used to speedily Self recover the data. Backup allows data with multiple recovery point and as per Backup Policy.  Security – A good BaaS would employ world class security protocols. Top notch safeguards like network firewalls and data encryption should be there at the data centre, Security is enforced by integration with AD , LDAP or o-Auth  Recovery SLA (RTO & RPO) – Three terms known as SLA (service level agreement), RTO (recovery time objective) and RPO (recovery point objective) should be clearly defined while choosing a BaaS provider. Both values should be as low as possible because RTO defines the time taken for the recovery process whereas RPO defines the frequency of data backup.  Customized services – Any efficient BaaS provider would be flexible in its functioning in the aspect of increasing its data backup frequency and the IT infrastructure of data storage.

DISASTER RECOVERY (DR) DR is a add on to backup and allows Business Continuity with DATA based on RPO, the data to be stored at multiple locations geographically so that the data is not permanently damaged or lost even if one of these locations is compromised due to some cyberattack on the provider itself. Advantages of Backup as a Service  Ease of management is increased by rotations of storage devices is as per MTBF, manual movement of data to offsite locations, performing of more efficient deduplication. So, the BaaS takes care of data availability at 99.99999999%.  BaaS takes up a monthly fee depending on number of users and size of Data Backed up which allows flexibility for businesses and entrepreneur start-ups that are on a tight budget to pay for what they actually need rather than the combined package. The cost pf ownership also gets cut down by a great margin because there is no hardware component involved that might become useless due to wear and tear over the years.  AES 256-bit encryption of backup data makes it secure, and safety comes 3 copies of Data stored in physical different Data Centres with the usage of BaaS. Regular testing of the customer’s data and running various safety procedures on it are part of the ongoing process to ensure unparalleled security.  BaaS enables continuous business protection by storing data in a remote location so that any harm that might be caused due to malicious attacks like ransomware attacks can be avoided.  Ease of addition and removal of data and infrastructure is extremely easy with backup as a service as it provides the customer with cloud backup.

How backup can help businesses never be held hostage by ransomware

Paying ransom fees to regain access to data in the vague hope that criminals will release files from hostage is a known phenomenon that continues to demand regular column inches. But currently, with ransomware on the rise, no company wants to get into the habit of paying out a ransom fee to access their own services.

Ransomware threats reached an all-time high in 2016, increasing by 752 per cent compared to the previous year and resulting in £815 million in losses for businesses, according to a study by Trend Micro and the Zero Day Initiative. This came as the number of ransomware families – including variants known as Bit Crypt, CryptoWall, Cerber and Jigsaw – increased from just 29 to 247 in the same timeframe, while research by CyberEdge Group found that nearly two thirds of organisations fell victim to a ransomware attack during the year.

This begs the question – how can businesses guard against the rising threat of ransomware?

The rise of ransomware

The vital ingredient in ransomware’s startling rise is money. The sheer size of the reward available can convince even people with impeccable moral standards to commit a crime. Suddenly there is a reason for rogue employees to take a risk and those with intimate knowledge of a company’s business processes can purposely target systems containing its most precious data to ensure the organisation must pay, and pay big.

The other key factor here is that malware has previously been something only skilled hackers could create, but now the ease of ransomware creation makes the process almost effortless – making it a simple task for, in theory, anyone with a computer to drop the malware and wait for the ransom pay-out. Indeed, a service known as Satan on dark web portal Tor allows anyone to create and configure a variant of malware and choose from a range of techniques, select a ransom note, choose a contact preference and track the amount of money they’ve made.

Trojan malware like Locky, TeslaCrypt and CryptoLocker are the most commonly used variations currently used to attack companies. These often breach security loopholes in web browsers and their plugins or inadvertently opened email attachments then, once inside the company, the ransomware can spread at breakneck speeds and begin to encrypt valuable data. The FBI has recommended that companies implement a solid ransomware backup and recovery strategy for effective protection against data loss caused by CryptoLocker or any other Trojan.

Repelling ransomware

Placing tight permissions on data is all well and good but realistically it will not help businesses, given that credentials can be obtained with a keylogger or through social engineering. Instead, to protect themselves against the threat of insider threats and ransomware, businesses should look to air gapped backups, which are essentially offline backups that cannot be manipulated or deleted remotely.

The criticality of the workloads and data within business environments demands a 3-2-1 rule, whereby 3 copies of the company data should be saved on 2 different media and 1 copy should be offsite.

Here are four options for effective data backup:

Backup Copy Job to disk

The first option is to transfer the data from one location to another using Backup Copy Job. Here, a file is not just copied, but the individual restore points within the backup are read and written to a second disk destination. Should the primary backup be encrypted or become corrupt, the Backup Copy Job would also fail because the vendor would not be able to interpret the data.

In such a scenario, the only hope is that the second backup repository has been separated from the rest of the IT environment. One could also use a Linux-based backup repository to secure against Windows Trojans.

Removable hard disks

Another option is to use a removable storage device as the secondary repository. This is usually done with removable hard drives such as USB disks, which aren’t commonly recommended for security purposes but if stored in a secure location could be a viable option for avoiding ransomware. In addition, when it comes to media rotation it is possible to detect when an old piece of media is re-inserted and automatically ensure that old backup files are deleted and a new backup chain is started.

Tape

The once-condemned tape option is becoming an increasingly popular option for IT in regards to encryption Trojans. This is because tapes do not enable direct data access, and thus provide protection against ransomware. Just like rotatable media, tapes should be exported to a secure location for optimum protection.

Storage snapshots and replicated VMs

Organisations can enjoy additional availability and ways to implement the 3-2-1 rule with storage snapshots and replicated VMs. These are semi-offline instances of data that can be resilient against malware propagation.

Never pay a ransom again

The ability to restore data means no business should ever have to pay a ransom. However, nothing can be taken for granted in the cybersecurity space, as threats are constantly shifting and the number of attack surfaces grow with every new device added to a network.

Businesses must assume it is a case of when an attack will happen, not if. To remain agile and in control of both new and emerging threats, security must no longer operate as a silo IT function but rather as a fundamental business process and enabler.

Ransomware must be prevented where possible, detected if it gains access to systems and contained to limit damage. But only through a collaborative and integrated approach, which ensures both security policies and SLAs align with business objectives, can organisations have confidence their data is as secure and available as possible. Doing so gives them the best chance of keeping their organisation one step ahead of the cybercriminals, as they look to realise the benefits of digitisation.

By Richard Agnew, VP NW EMEA at Veeam

The post How backup can help businesses never be held hostage by ransomware appeared first on IT SECURITY GURU.

from How backup can help businesses never be held hostage by ransomware