Security News

Expert says ransomware attacks will happen, and your company has to be prepared long before the attack hits. TechRepublic's Karen Roby spoke to Jim McGann, VP of Index Engines, about ransomware and how to recover from an attack.

As recent ransomware and cyberattacks are highlighting the potential impact of data loss to critical infrastructure, Veeam is strengthening its commitment to deliver Modern Data Protection to the U.S government with additional industry resources. With more than 1,200 government customers, VGS is focused on the backup and protection of mission-critical data for the U.S. Department of Defense, Civilian Agencies, Native American Tribes, the Intelligence Community and Federal System Integrators.

IDrive Cloud Backup has released IDrive Mirror, providing secure, cloud-based full image backups for Windows computers and server operating systems for protection against data loss and dreaded ransomware. IDrive Mirror gives individuals and small businesses the ability to backup unlimited computers and server systems into a single account, allowing for direct data backup and retrieval from the IDrive cloud without any intermediary storage device.

Colonial Pipeline's operators reportedly paid $5m to regain control of their digital systems and get the pipeline pumping oil following last week's ransomware infection. News of the payoff was broken by Bloomberg - which not only cited anonymous sources but also mocked other news outlets' anonymous sources for saying earlier this week that the American pipeline operator would never pay the ransom.

Trilio announced the availability of TrilioVault for Kubernetes 2.1, the latest release of its cloud-native backup and recovery platform that enables restoration and mobility of entire Kubernetes workloads on-demand. TrilioVault for Kubernetes 2.1 features new Kubernetes management functionality including visibility and insights into Velero-based backups as well as enhanced disaster recovery capabilities for multi-cloud infrastructure deployments.

From backup and disaster recovery for Amazon Elastic Kubernetes Services, disaster recovery across AWS Regions or Availability Zones, and new backup capabilities for AWS focused on cost optimization and security to safeguard companies from malicious intent. Zerto backup and disaster recovery for Amazon EKS is a new offering that integrates backup and disaster recovery into the application deployment lifecycle for Amazon EKS. Organizations can now easily protect, recover, and move any Kubernetes application and its persistent data for a native, data protection as code experience.

Update: QNAP confirmed that Qlocker ransomware has used the removed backdoor account to hack into some customers' NAS devices and encrypt their files. T]he so-called Qlocker ransomware took advantage of one of the patched vulnerabilities in HBS to launch a hostile campaign, targeting QNAP NAS directly connected to the Internet with unpatched old versions of HBS. QNAP has addressed a critical vulnerability allowing attackers to log into QNAP NAS devices using hardcoded credentials.

Zerto announced the availability of Zerto Backup for SaaS powered by Keepit, a cloud backup and recovery solution designed to manage and protect cloud SaaS data covering some of the most widely-used SaaS solutions, including Microsoft 365, Dynamics 365, Salesforce, and Google Workspace. Zerto Backup for SaaS architecture runs on a secure private infrastructure offering data immutability, compliance, and guaranteeing data availability.

Claroty researchers have found and privately disclosed nine vulnerabilities affecting Rockwell Automation's FactoryTalk AssetCentre, an ICS-specific backup solution. Rockwell Automation's FactoryTalk AssetCentre is a centralized tool for securing, managing, versioning, tracking and reporting automation-related asset information across industrial facilities.

Backblaze has removed Facebook tracking code accidentally added to web UI pages only accessible to logged-in customers. Backblaze discovered the issue after receiving user reports on March 21 that pages on the B2 web UI were sending file names and sizes to Facebook.