Insider Threats and Enhanced Data Protection

Insider threats may once have only applied to disgruntled employees, or perhaps accidental deletions or modifications due to carelessness or over-delegation of administrative privileges. It generally referred to an actual person, but in today’s technological world an insider threat can be much more. Watch the Ransomware Webinar below to find out more about the three types of insider threat.

Types of Insider Threat

Compromised

This is the act of using another person’s credentials to access information and resources, often without the knowledge of the user. These can access backup systems, create back doors, and are difficult to detect because the user is a known entity.

Negligent (or uninformed, unaware, accidental)

These are users who are not properly educated on security practices and fall prey to things such as phishing emails, are unaware of the impact of their actions, or simply have too many rights and accidentally delete or negatively impact data.

Malicious

Malicious employees are dangerous for many reasons. While employed, they have access to data, proprietary information, financials, etc., that could be used for personal gain or against the company. A common tactic is for ‘revenge’ when employees willfully destroy or modify data to hurt or hamper a company’s efforts in the market or its general operations. Contractors and vendors who work within a facility and have access to network resources can also provide information related to security practices or even actual data to outside sources.
Hackers and other insider threats know that, in order for their attack to be successful, the target or victim must not be able to restore data to circumvent their activities. They specifically go after remote and cloud backups first, then work their way back to local files and workloads. By cutting off the access to backup files, they force companies to pay ransoms or meet other demands.

How can Enhanced Data Protection help?

In an effort to help curb insider threats, Veeam™ released a feature called Insider Protection and made it available to Veeam Cloud & Service Providers. The inherent challenge for the customer is that it typically requires more frequent, full backups in order to reduce the risk of losing an entire backup chain. This becomes cost-prohibitive, as it requires more disk space in the cloud backup repository.

Global Data Vault recognized this challenge and, instead of charging customers more for additional disk space required to implement Insider Protection, applied additional development in our cloud infrastructure to create a “gap” and a hidden repository. The Enhanced Data Protection repository keeps the full chain of backup files intact so that we can guarantee quick and complete recovery without having to attempt to rebuild metadata or piece together any missing parts of the chain. This repository is not visible to, or accessible from, a customer’s network and is impervious to insider threats.

More Global Data Vault Webinars

Managing the Risk of Having Data in the Cloud

Managing the Risk of Having Data in the Cloud

In this webinar, we discussed the March 2021 OVHcloud fire in Europe and the challenges of maintaining and protecting data no matter where it resides. Many customers lost data due to the fire and not having backups, offsite backups, or a disaster recovery plan. Our...

Veeam Backup & Replication v11 Webinar

Veeam Backup & Replication v11 Webinar

Veeam Backup & Replication v11 is available! With over 200 new features and enhancements, we wanted to focus on our favorites and a few buzzworthy items such as CDP and restore anything to Hyper-V. We invite you to listen as Veeam Certified Architect and 2021...

Eliminating backup headaches for MSPs and VARs

Eliminating backup headaches for MSPs and VARs

In this webinar, we visit with Nick Scholle, CIO of Technology Pointe, and hear how partnering with Global Data Vault has:       Reduced costs related to colocation, hardware, and software       Added value to customer offerings       Eliminated repetitive tasks...

AWS, Azure, or GDV: Who Cares More About Your Data and Why

AWS, Azure, or GDV: Who Cares More About Your Data and Why

The Pros & Cons of Public Cloud, Private Cloud, and Fully-Managed Cloud Selecting a public cloud or backup/disaster recovery provider can be daunting. While there is nothing “wrong” with services such as AWS or Azure, or even other cloud backup providers, they...

MSPs + GDV = Success

MSPs + GDV = Success

Success Stories of How MSPs and VCSP Work Together Through our reseller program, Global Data Vault offers DRaaS, BaaS, O365 Backup, Enhanced Data Protection, and an elite cybersecurity solution. Our straightforward commissions, paired with the philosophy, “it’s always...

Insider Threat Webinar

Insider Threat Webinar

Insider Threats and Enhanced Data Protection – joint webinar with BitLyft What is an insider threat and how do they affect businesses? How do I defend and protect myself against insider threats and malware? Learn how to create a complete security posture?...

Cloud Backup Webinar: What Matters, What Happens

Cloud Backup Webinar: What Matters, What Happens

Cloud backups allow a company to send their data to another location in case it becomes compromised, quickly restore data and maintain business continuity. In this cloud backup webinar and discussion, we will answer many of the common questions regarding cloud backups...

Cybersecurity Webinar – A Complete Solution

Cybersecurity Webinar – A Complete Solution

In this cybersecurity webinar, we cover some real-life cyber-attack stories and describe how the companies got compromised and what was done to recover their data integrity.  Cybersecurity, offsite backups, and cloud-based disaster recovery are all common terms these...

Related Posts

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *