BCDR Beats Back Ransomware and other Malware Mischief

MSP, MSP Tips, Security
Thunderstorm in midwest plains

Ransomware today is one of the biggest threats to data safety, and it shows no sign of going away. Widespread and vicious attacks such as SamSam demonstrate that ransomware is now particularly nefarious and has increasingly large-scale impacts including costs and damage to data and the businesses that own it. No doubt, the continued rise of modern threat vectors like ransomware has IT on high alert – and looking for answers.

Business continuity disaster recovery (BCDR) is a best practice for ransomware recovery. BCDR offerings can garner premium price points with clients. Yet many MSPs worry that appliance-based BCDR is out-of-reach, or do not know the features to look for to efficiently manage the business.

Get the Terms Straight

Many customers, and indeed the occasional MSP, are unclear on what exactly BCDR is and how it differs from plain old backup.

Backup, an old term, is simply the replication of data. BCDR, on the other hand, is the entire plan for recovery. This includes a plan for how to recover the data, how to give the people who need access to it, such as where will they sit? How will they VPN in? What phones will they use? BCDR takes all aspects of that process and policies that drive it.

It’s important to note that while BCDR is a premium service that MSPs can offer clients, it doesn’t have to cost significantly more than plain old backup to deliver if you use the right solutions.

Consider some findings from a recent Webroot study. Based on the results, this Kaseya security partner finds that the best offense is a good defense. It recommends MSPs and IT shops:

  1. Educate users about the threats
  2. Use a behavior-based A/V and A/M
  3. Patch, patch, patch
  4. Back up. The best offense is really a good defense – you gotta back up

Antimalware, other security layers, backups, BCDR and training offer the greatest efficacy in terms of defense.

MSPs also need to explain the most common causes of data loss. Ransomware may be the most visible, but user error, hardware and software errors, breaches, and all forms of malware also kick in.

This all makes data loss and recovery a huge issue. With MSPs, the biggest request they get around BCDR is to recover lost files for users.

Hence, you must demonstrate how your BCDR can recover files easily and efficiently.

Different causes of data loss call for different solutions, so your client or prospect should understand the multiple threats and how true BCDR prepares for each. For instance, a cloud-only backup solution is designed to handle the least likely event where all of the data and the infrastructure is gone. And the cloud is slow, so should be a last ditch effort — 1TB of data takes one day over a 100 Mb/s pipe to restore.

Show that it Works

It is critical a BCDR solution give its users the ability to easily see that all of their backups were successful and to make it easy to address failures quickly.

Testing is the lynchpin of your BCDR plan. It is the only way to know if your plan works.

Like their IT counterparts, many MSPs do not test or only test once a year. Testing is hard, expensive, time consuming.

Why Kaseya Unified Backup Ransomware Detection

When backups are performed using Kaseya Unified Backup (KUB) appliances, the predictive analytics engine analyzes the data stream and uses a probabilistic methodology to identify anomalies to match the activity a system would present if infected with ransomware.

An alert is then generated and sent to the MSP or the organization’s IT team to signal that significantly higher than average unique data has been detected and that the conditions are cues of a probable ransomware attack.

An additional instrument to assist in detection or ransomware is KUB’s Recovery Assurance, which provides backup testing and verification, ensuring your backup data can restore your system as planned. A component of that testing includes the ability to run a security check for ransomware.

Get your KUB demo here.

Posted by Doug Barney
Doug Barney was the founding editor of Redmond Magazine, Redmond Channel Partner, Redmond Developer News and Virtualization Review. Doug also served as Executive Editor of Network World, Editor in Chief of AmigaWorld, and Editor in Chief of Network Computing.
NOC- Network Operations Center

NOC: An MSP’s Guide to Network Operations Centers

Network operations center (NOC) services, in the context of modern-day IT managed services, typically involve the delivery of IT servicesRead More

person fixing a broken laptop

Break/Fix vs. Managed Services: All You Need to Know

IT service providers have come a long way over the past couple of decades. With the rapid rise in theRead More

Person stacking numbered blocks

5 Services for MSP Revenue Growth: Going Beyond Traditional IT Services

MSPs have undergone a tremendous evolutionary shift over the past decade. Their customers are increasingly moving to multi-cloud environments andRead More

2020 MSP Security Trends

5 Security Trends That Emerged in the 2020 MSP Benchmark Survey

In this year’s MSP Benchmark Survey, 1,300 professionals from MSPs of all sizes revealed their cybersecurity concerns, needs and opportunities,Read More

Connect IT Global - You're Invisited! - Join us at ARIA Casino & Resort - August 24-27, 2020
2020 MSP Benchmark Survey Report

Archives

Categories