It is now reasonable to assume that most organizations have or will suffer a ransomware attack. While seeking to prevent ransomware and security attacks in general remains critical, what to do if and when the ransomware attacks occur has emerged as an essential initiative — considering that organizations’ operations typically cease to function until the ransomware attack is resolved.
One of the most obvious first lines of defense against ransomware attacks is to maintain backups that are inaccessible through network connections once the data is archived.
Furthermore, it is highly likely that the backed-up data contains vulnerabilities that served as the attack point for the attack in the first place.
Today’s ransomware attacks now seek out and destroy any network-connected backups in order to maximize the chances that you’ll have to pay the ransom to restore your data.”