Ransomware criminals target backups for assured ransom

    In recent times, the importance of maintaining efficient data backups as a defense against ransomware attacks has been repeatedly emphasized by security experts and law enforcement agencies. However, what happens when even these backups fall victim to encryption or deletion?

    According to a report by Sophos, a prominent cybersecurity firm, a staggering 94% of organizations affected by ransomware in 2023 experienced compromise of their backup systems. This alarming trend indicates that cyber-criminals behind file-encrypting malware are now targeting the very data intended for continuity or recovery purposes, maximizing their potential gains.

    This raises the question: what’s the point of backups if they can also be compromised?

    While the risk is evident, data backups remain essential for maintaining operations during unforeseen incidents. To mitigate the impact of backup compromise, it’s advisable to maintain multiple backup copies stored across different geographical locations. This ensures redundancy, allowing for continuity even if one backup location is compromised. Leveraging the services of a reputable cloud service provider or similar firm can facilitate this process, offering added security and reliability.

    So, should businesses consider outsourcing backup services to a cloud provider capable of maintaining multiple copies at various locations?

    Indeed, for those with the budgetary flexibility, investing in offsite and onsite backups concurrently can offer enhanced protection. However, for cost-conscious organizations, outsourcing to a reputable service provider can provide both security and cost savings, albeit to a certain extent.

    In conclusion, while the threat of backup compromise is real, strategic measures such as maintaining redundant backups and leveraging professional services can help mitigate risks and ensure business continuity in the face of ransomware attacks.

    Naveen Goud
    Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

    No posts to display