Create an IT Recovery Plan to Protect Against Ransomware
By now you’ve probably heard of ransomware. Over the last few months a number of high profile attacks have occurred and since 2013 there have been well over 100,000 reported instances. Because ransomware is so disruptive many are characterizing it as a disaster event and treating it as such. With this in mind business leaders should review each aspect of their disaster recovery (DR) plan to ensure that precautions are taken to mitigate any impact to the business.
“Last year alone there were reported losses of more than $24 million as a result of ransomware attacks” source: FBI
The problem for many leaders is that there isn’t a formal IT recovery plan. This in itself is not the end of the world but creating an IT recovery plan should be at the top of your to-do list. External USB hard drives or tape to backup critical IT systems is not enough. What happens when something is accidentally deleted? What would be the cost and productivity implications of having to recreate that data in the event of a data disaster?
At a minimum, data and systems should be backed up in three different places: the main point of storage (file server), local disk backup and a copy of that data in the cloud. The benefit of doing this is the ability to circumvent a hostile takeover of your data. Intrusion threats have come a long way in recent years — from the simple virus attacks that render a PC useless until the operating system is reinstalled, to organized crime organizations that use ransomware and untraceable Bitcoin payments to hold data hostage.