Data loss protection

Definition

Data loss is different from device failure.  An example of data loss would occur if a CryptoLocker virus infected any computers at the company.  The virus software searches for files on the laptop, desktop, server, and NAS devices and locks them so that they cannot be accessed.  It usually waits a couple of days before demanding payment so that the backup files are also infected.  A server backup that does not save seperate copies does not protect data, it can only be used for device recovery, for example if a hard drive fails.

Prevention

The first line of defense against this type of data loss is to have all of the computers current with operating system and application patches.

The second line is to train employees, and drill them on safe computer usage especially with emails and internet sites.  Don't open any attachments that could be unsafe, don't download files from unfamiliar websites.

The third line of defense is to have quality internet and spam email software.

Recovery

The solution is simple use a data protection device and service that can be used to recover before the CryptoLocker infection.  There are two main features, one a remote offsite service, and a second is an on site device.

  1. The advantage of an offsite service is that when used by itself it is cheaper and can project from building disaster like a fire or theft. (about $50 per month)
  2. The advantage of an onsite device is that it is much faster to recover, and can be remotely managed to recover after hours to minimize any loss of productivity during the work day.  In the last two months, 3 offices we support in Utah have been cryptoLocked and recovered by using onsite devices.  This was all completed before the start of the next work day.  Also, files are protected at the disk level not at the file level, so there is no need to exit programs or stop working to perform automatic backups.

A combination of the two options is the best solution and would cost about $150 per month.