Last week, iNSYNQ, a company that hosts a number of cloud-based products such as QuickBooks, was hit with a ransomware attack. This on its own isn’t really big news; ransomware attacks are becoming more common recently and no company is completely immune to them. The issue with this one is the recovery process.
Backups are the best way to prepare for and recover from a ransomware attack. This makes recovery easy if a disaster such as ransomware happens. However, according to a user on Twitter, while iNSYNQ did have backups, they kept them on the same network as their main servers. Most ransomware spreads over networks, meaning keeping your backups on the same network is about as useful as not having backups at all.
So, what is the proper way to store backups? For a large company like iNSYNQ, physically taking the backup drives and storing them off-site would be an effective way to keep the backups isolated. The ransomware can’t touch them if they aren’t connected to anything. Alternatively, copying backup files to an off-site storage solution would work as well. A company like iNSYNQ would certainly have the resources to set up either of these solutions.
For a consumer, a simpler solution would be cloud backups. Since the backups are stored online, you don’t have to worry about them being infected or encrypted. There are a number of cloud backup providers available, so do your research to find the one you trust.