Security News

From backup and disaster recovery for Amazon Elastic Kubernetes Services, disaster recovery across AWS Regions or Availability Zones, and new backup capabilities for AWS focused on cost optimization and security to safeguard companies from malicious intent. Zerto backup and disaster recovery for Amazon EKS is a new offering that integrates backup and disaster recovery into the application deployment lifecycle for Amazon EKS. Organizations can now easily protect, recover, and move any Kubernetes application and its persistent data for a native, data protection as code experience.

Update: QNAP confirmed that Qlocker ransomware has used the removed backdoor account to hack into some customers' NAS devices and encrypt their files. T]he so-called Qlocker ransomware took advantage of one of the patched vulnerabilities in HBS to launch a hostile campaign, targeting QNAP NAS directly connected to the Internet with unpatched old versions of HBS. QNAP has addressed a critical vulnerability allowing attackers to log into QNAP NAS devices using hardcoded credentials.

Zerto announced the availability of Zerto Backup for SaaS powered by Keepit, a cloud backup and recovery solution designed to manage and protect cloud SaaS data covering some of the most widely-used SaaS solutions, including Microsoft 365, Dynamics 365, Salesforce, and Google Workspace. Zerto Backup for SaaS architecture runs on a secure private infrastructure offering data immutability, compliance, and guaranteeing data availability.

Claroty researchers have found and privately disclosed nine vulnerabilities affecting Rockwell Automation's FactoryTalk AssetCentre, an ICS-specific backup solution. Rockwell Automation's FactoryTalk AssetCentre is a centralized tool for securing, managing, versioning, tracking and reporting automation-related asset information across industrial facilities.

Backblaze has removed Facebook tracking code accidentally added to web UI pages only accessible to logged-in customers. Backblaze discovered the issue after receiving user reports on March 21 that pages on the B2 web UI were sending file names and sizes to Facebook.

While there's lots of bustle around protecting data that resides in on-premises apps, when it comes to protecting data in SaaS apps, it's pretty much crickets. One way they can better protect and preserve crucial SaaS app data is by having the right backup in place.

Veeam Software announced general availability of new Veeam Backup & Replication v11, enabling the most advanced data protection solution for cloud, virtual, physical and enterprise workloads. "Veeam released V10 with more than 150 new enhancements just 12 months ago, and now has more than 700,000 downloads. Being able to launch the next version - Veeam Backup & Replication v11 - with an additional 200 new and powerful backup, cloud, DR, security and automation enhancements speaks volumes to Veeam's speed of innovation, as well as our strong commitment to the needs and data reliability demands of our customers and partners," said Danny Allan, Chief Technology Officer and Senior Vice President of Product Strategy at Veeam.

If you think your backup strategy means you're protected from the worst that cyber-criminals can throw at you, we've got some bad news. If you are unlucky enough to get a "Pay up or else" notice, there's a very good chance that the attacker in question has already been stealthily working their way through your systems for some time, ensuring your recovery data has already been comprehensively trashed.

Actiphy announces the release of the next generation of ActiveVisor, a centralized management solution for ActiveImage Protector backup clients, with many new features including enhanced integration with Microsoft's Active Directory Services. ActiveVisor is a centralized backup management console for ActiveImage Protector backup clients providing a visual representation of statistical data, real-time monitoring of backup status and storage space availability, and deploy agents, backup tasks, and schedules.

You can pay up, hoping that you will indeed get your data back quickly, while knowing that the ransom is then likely to fund other nefarious activities. Assuming the extortionists haven't gotten to the backups first, that is.