News/Trends

Best practices for developing an in-depth ransomware recovery strategy

July 22, 2020 Julie Herd, Director, Solutions Marketing

Ransomware attacks have become frequent, malicious acts within the enterprise. According to Cyber Security Ventures, by the end of 2021, ransomware attacks are expected to occur every 11 seconds — an increase from every 14 seconds in 2019.1 Additionally, ransomware attacks don’t just zero in on one industry — all organizations are susceptible. The Aberdeen Group notes that half of all enterprises have experienced a ransomware attack within the last 12 months.2

Instead of hoping that your organization won’t be hit by a ransomware attack, it’s critical that your organization develops a comprehensive, ransomware recovery strategy that will help your organization recover when a ransomware attack occurs. Let’s take a look at the importance of a ransomware recovery strategy and how a cloud solution like Druva can help.

The importance of a ransomware recovery strategy

Failing to have a ransomware recovery strategy in place can have a profound impact on your organization. Not only does a ransomware attack damage your organization’s productivity (and to some degree your reputation) but it could cost your organization thousands of dollars. In fact, the average ransomware payout in 2019 was just over $84,000.3

Implementing an in-depth cybersecurity strategy can save your organization, time, money, and most importantly, your data, when a ransomware attack occurs. An in-depth cybersecurity strategy embodies a holistic, multi-security response strategy which is designed to keep threats out and empowers strong resilience to minimize downtime when a ransomware attack happens.

Ransomware recovery best practices

When developing your in-depth cybersecurity strategy, the National Institute of Standards and Technology (NIST) recommends that you follow the Cyber Security Framework (CSF), which defines five essential functions:

  • Identify — Identify the key assets (data, applications, etc) that your business needs to function
  • Protect — Automate data protection for your key assets as well as your backup environment
  • Detect — Early threat detection is critical to mitigating ransomware threats
  • Respond — Proactively respond to prevent threats from spreading
  • Recover — Flexibility recovery options from clean backups reduces impacts to your business

Selecting the right ransomware recovery solution is critical so that you can ensure that your organization has a rock-solid multi-layer defense plan in place to reduce the impact of ransomware or malware.

How Druva can help with your ransomware recovery strategy

Druva offers ransomware protection for all of your endpoints, SaaS applications, and data center workloads. Druva’s ransomware recovery solution is a cloud-based service and is founded on the industry standards and a zero-trust architecture model, which provides rapid ransomware recovery while proactively detecting and responding to malicious threats. With Druva, your data is never lost and always accessible.

For more ransomware recovery insights, check out this eBook, “Insider’s guide to defending against ransomware”  — and make sure you’re prepared when ransomware strikes.


1Cybersecurity Ventures, “2019 Cybersecurity Almanac: 100 Facts, Figures, Predictions And Statistics,” Morgan, Steve.
2Aberdeen Group, “Reducing impact of ransomware attacks via cloud-based approaches,” 2019
3Coveware, “Ransomware Costs Double in Q4 as Ryuk, Sodinokibi Proliferate,” 2020