t cht lk
t cht lk
Coined the 3-2-1 rule , this approach combines cloud , on-premises , offline-remote copies to ensure data can be preserved even if an online backup is disrupted .
When exploited , backup software vulnerabilities can also compound into giving attackers direct access to live system environments . Take the CVE-2022-36537 vulnerability that was publicised in early 2023 for example . Threat actors used it to access additional servers that were backed up on the same system , essentially surfing backward into live environments to exfiltrate data and distribute malware .
copies to ensure data can be preserved even if an online backup is disrupted . Sophisticated ransomware will attempt to disrupt recovery from backups , and any online backup , remote or local , is at risk . Among all forms of backup systems , cloud-based backups are often the most vulnerable . In turn , organisations should be leveraging an on-premises backup that can drive rapid restoration at scale , especially in cases where there ’ s a high volume of critical data to recover . Controls used to monitor access to on-premises backups do not always translate one-to-one to cloudbased systems .
Designing a cloud-based solution , organisations need to consider how access is controlled , how requests to retrieve or store data are authenticated and how the backup live cycle from creation over retrieval to eventual deletion is managed .
That very same scenario is impacting organisations of all sizes or sectors , heightening the criticality of effectively implementing safe and secure backup system storage to maximise protection and agility .
Organisations should consider data assets at risk if they are not backed up in at least three different locations . It does not help to have three copies of data using the same cloud provider , even if the data is in different zones . Organisations should aim to maintain an on-premises copy , a cloud or online-remote copy , and an offline remote copy of critical data .
One of the main reasons to invest in on-premises backups is to speed up recovery . Cloud and offsite backups will almost always be slower . In some cases , cloud backup providers may have mechanisms to accelerate the recovery of large amounts of data by shipping hard drives instead of using slower internet connections . Recovery speeds should be tested ahead of time to better estimate how long it will take to retrieve large amounts of data . This provides an accurate barometer of how long it will take to recover sensitive files in the wake of a breach when extended downtime durations can translate to millions in financial losses .
Coined the 3-2-1 rule , this approach combines a diverse mix of cloud , on-premises , and offline-remote
Any data leaving the direct control of an organisation , whether it is physical backup files being shipped offsite
68 INTELLIGENTCIO AFRICA www . intelligentcio . com