StorageGuard - by Continuity™ - is the ONLY Security Posture Management solution for Storage & Backups, helping to ensure these systems are securely configured, and compliant with industry & security standards.
Since backups are becoming lucrative targets for cybercriminals, vendors like Cohesity, Commvault, Dell, Rubrik, Veeam and Veritas have responded with new ransomware protection features – including immutability.
With immutable backups, once the data is backed-up, it is fixed and unchangeable. It can never be deleted. Organizations gain an always-recoverable and secure backup, to protect themselves against cyberattacks.
Immutability is an important capability; however, it can lead to a false sense of security if not implemented properly. When misconfigured, it is possible to delete supposedly immutable data, for example, by manipulating time/date settings on the storage device to bypass retention enforcement mechanisms.
One of the best practices by the backup vendors is to ensure immutable backups are configured with retention lock – a parameter that prevents their deletion for a minimum period of time. If retention lock is not configured, cybercriminals can breach the backups by modifying large amounts of data, thereby quickly filling up the backup pools which results in deletion of all existing backups to free up space.
Even when retention lock is enabled, care must be taken to make sure cybercriminals can’t fool the backup systems to believe time is passing more quickly than intended. This is referred to as “time spoofing” attacks – where the attacker manipulates insufficiently secure time sync configuration to trick the backup systems into thinking that “X” years have passed.
To give you a helping hand, here’s a list of do’s & don’ts for your immutable backups:
Do’s
Don’ts
In less than 1 hour, assess the security of your backup environment:
https://www.continuitysoftware.com/assess-the-security-of-your-backup-storage-environment/
Check out Backup Blog Post #4 in the series: How To Validate The Configuration Of Your Immutable Backups.
It’s time to automate the secure configuration of your storage & backup systems.
On October 29, join Dell-Continuity Webinar: 4 Fundamental Strategies To Secure Your Storage & Backup
Register