Will data backups save you from ransomware?
Why Backup is Better Than Paying Ransom?
Ransom cost vs Backup cost
Would love to hear your thoughts and experiences.Please post your view, comments and suggestions.Thank you in advance!
Backups are like insurance. Those who are indifferent to risk see it as a waste of money, whereas those of us with assets to protect (houses, professional reputation, etc.) consider it a cost of doing business.
Although backups are a good defense to many problems, including ransomware, one does need to keep their limitations in mind:
At my previous employer, we were breached. We had a cyber insurance policy which paid for an IR team, and they used our backups to perform a perfect restoration. The bad guys never found our backup data.
This was incredibly fortunate because previous restorations from backup were typically small scale, and not across our entire infrastructure.
The one thing which hit us the hardest was loss of availability. We were out of email for twenty hours, and other services were a bit longer.
The bad guys didn't get a penny.
Another perspective is Store Now Decrypt Later (SNDL) or Store Now Exploit Later (SNEL).
Which is what state actors are conducting at the present time in the hope they can decrypt using Quantum Computers in 5-10 years time - so if you have data that needs to stay safe for 10 years or more i.e. Passports - then potentially you have problems.