Tech/Engineering

Stay Ahead of Malware with Cloud Data Protection

August 23, 2019 Prasanna Malaiyandi, Director, Product Architecture

Our six-part Cloud Data Protection blog series goes over some of the inherent benefits of the cloud in general and cloud-native data protection and management specifically. One not-so-obvious benefit for CIOs and IT managers like you is that with cloud backups and rich metadata (our last blog was Enhance Your Cloud Data Protection with Rich Metadata ), there’s built-in insurance against ransomware and other threats. 

Firewalls, physical security, software, and educated end-users all help you protect your enterprise network from malware. This layered, “defense-in-depth” approach, when done right, reduces vulnerability to the never-ending stream of ransomware, viruses, bots, and other threats lurking in email messages and the web. But sooner or later, hackers will compromise some of your data. In fact, according to Symantec’s 2019 Internet Security Threat Report, enterprise infections were up by 12 percent in 2018.

That’s why your IT group is so focused on backups. Backups hosted by a cloud service provider (CSP) are virtually impervious to any infection that’s in your enterprise network. If you can identify and restore a pristine (before malware) version of your data from the CSP, you’ve minimized a tremendous amount of risk. However, the identification and restoration part is important, and how a SaaS data protection solution time-indexes its metadata is what can make the difference between a devastating attack and an annoying delay.

Shared security responsibilities

The reason you can worry less about a CSP is because they undergo significant security audits and generally must meet far more stringent requirements than the average business data center. They typically invoke a shared security model that splits responsibilities logically. For example, AWS takes responsibility for protecting the hardware, software, networking, and facilities that run AWS Cloud Services. They automatically encrypt all traffic on the AWS global and regional networks between AWS secured facilities. The SaaS vendor deals with what’s between them and AWS, and you are then responsible for configuring the solution for your internal security controls such as who at your company has access to it.

A built-in early warning system

A malware attack typically starts to rename, delete, or encrypt files en masse. Constantly monitoring the company’s data systems manually for such threats is not cost‐effective. Yet in the process of backing up data to the cloud, a SaaS data protection solution automatically monitors file status and can detect odd changes (anomalies). It can then alert IT to help minimize losses. Not all cloud solutions do this, but those that do add tremendous value.

Druva is a SaaS data protection solution built on AWS that ensures all proper security controls are handled with regard to its interaction with the AWS cloud. In addition, it detects subtle data anomalies, the first warning signs of malware. Druva is a flexible, cloud-native app that offers cloud backup and disaster recovery across endpoints, data center, and cloud workloads — without requiring any dedicated hardware, software, or skilled resources.

Check out our previous blogs in this series:

Look for our next one, coming soon!

For more detail about why the cloud is the place for enterprise data protection and management, download the Cloud Data Protection for Dummies book and our ClO’s Guide to Cloud-first Data Protection.