Shielding Your Data: Effective Strategies Against Ransomware

1. Data Protection from RANSOMWARE with StoneFly DR365™ © 2023 StoneFly, Inc. | All rights reserved.

2. Overview StoneFly DR365™ is a feature-rich backup and disaster recovery site in a box. It is a hybrid solution that enables users to setup backup in Microsoft Azure cloud using cloud connect services and it is optimized to deliver Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs) of less than 15 minutes. DR365™ is equipped with a number of data services that ensure high availability for enterprise workloads. One of its noticeable features is the ability to protect enterprises from cyber-threats like Ransomware. Ransomware disrupts organizations and businesses by encrypting systems or data. After a successful ransomware attack, the unprepared victim has only two choices: either pay the ransom and hope their data will be recovered OR they can choose not to pay the ransom and attempt to recover their data from other means. Both options lead to large financial repercussions; depending on the size and nature of the organization/business/firm. Ransomware developers prefer targets like Health industry, Finance industry and the Legal industry. That’s because these industries process data of greater value like Personally Identifiable Information (PII), Transactional Records, Patient Data etc. However, the favorite targets of ransomware developers are unprepared organizations/ businesses/firms, regardless of the industry. By leveraging StoneFly DR365™ backup and disaster recovery (DR) appliance, enterprises can prepare for ransomware. Our snapshot and replication technology enables enterprise IT environments to easily recover from a successful ransomware attack; turning the disaster of ransomware into a mere inconvenience.

3. 1 Ransomware What is Ransomware? 400, 000 machines and 150 countries infected Ransomware is a form of malicious software (malware) that, after infecting your system denies access to data and threatens to delete it if a ransom is not paid. Ransomware promises - often not truthfully - to provide its users with a decryption key that can restore the access to the data after the ransom has been paid. On May 12, 2017 the WannaCry Ransomware outbreak affected 400, 000 machines and 150 countries. Two of the first prominent victims were the UK’s National Health Service (NHS) and Telefonica, the largest telecom company in Spain. Ransomware, like WannaCry, provided detailed instructions for the victim about how to pay the ransom. The text encouraged the victim to pay the ransom and attempted to assure them that they will regain access to their data as long as they did as they were told. By late evening the same day, it had taken root in companies like FedEx and countries like United States and China. The demanded ransomware varies on a per case basis, it ranges from hundreds of dollars to thousands payable in cryptocurrency. How Ransomware works? Ransomware costs Atlanta over $10M On April 2018, SamSam ransomware successfully attacked the city of Atlanta, Georgia, USA. The attack took down 424 essential applications including 30 percent of those supporting vital municipal functions like the court system and police department. There are a number of ways for ransomware to infect a system. One of the most common delivery systems for ransomware is phishing scams. These are emails with links or attachments that only need a single click. After the click, Worm-like ransomware enter the system and replicates to all connected computers, servers, and infrastructure. Such scams have built-in social engineering tools that trick users into making that one click that can lead to a successful ransomware infection. Reports suggest that the Attorney’s Office lost 10 years worth of documents while the police department lost all of its stored dash cam recordings. Other aggressive forms of ransomware, like NotPetya, exploit security holes to infect systems without needing to trick users. © 2023 StoneFly Inc. | All rights reserved. All trademarks used are the property of their respective owners.

4. 2 Data protection How can you protect your data from Ransomware? What is the 3-2-1 rule? The 3-2-1 rule states that when backing up important data, IT infrastructures should have three copies of their data, stored in two different storage types with one copy of the data kept off-site. In order to ensure continuity, high availability and data recoverability; Security experts encourage the implementation of the 3-2-1 rule. An enteprise backing up their data in accordance to this rule will have multiple copies at multiple locations, therefore it’ll be almost impossible for any malware, cyber-attack or ransomware to completely disrupt them. Even when a site or server or infrastructure succumbs to a cyber-attack, ransomware, malware or a natural disaster; the organization can recover using one of the copies of their data. Complete Data Protection Solution A complete data protection solution combines the 3-2-1 rule with purpose-built ransomware protection and delivers reduced Recovery Time and Point Objectives (RTPOs). Although cyber-defense solutions are being implemented as means to protect from ransomware; the continuously evolving and adapting cyber-crime world makes it difficult to solely rely on them. Which is why it is important to have backup and disaster recovery solutions that enable IT environments to recover with minimum downtime. The role of Cloud Technology With cloud technology, IT environments can keep their data off-site. However, storing or backing up data off-site does not guarantee a complete ransomware-free experience. Ransomware strains have evolved and cloud backup services aren’t completely immune to them. For instance, ransomware strains like Virlock use desktop sync clients of popular cloud services to access and encrypt files stored in the cloud. Without a complete data protection solution that combines the 3-2-1 rule with purpose-built ransomware protection, organizations and businesses are always at risk of data loss and disruption/discontinuity. © 2023 StoneFly Inc. | All rights reserved. All trademarks used are the property of their respective owners.

5. 3 DR365™ StoneFly DR365™ - The complete Backup and DR Solution Backup to Azure Data Centers around the globe StoneFly’s parternship with Microsoft enables our customers to setup their backups in Microsoft Azure data centers around the globe. For data redundancy and reduced latency, our customers can choose to keep their back- ups closer or for disaster recovery purposes, they can choose to set it up at a regionally different data center. StoneFly DR365™ appliance is equipped with enterprise-level data services that enable IT environments to brush-off ransomware and setup backup and disaster recovery with Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs) of less than 15 minutes. Apart from delivering an enhanced backup and recovery experience, DR365™ also provides purpose-built data protection from ransomware/malware and other cyber-attacks. DR365™ provides services that enable IT environments to easily setup the 3-2-1 rule for their enterprise backups. DR365™ comes with cloud connect services that facilitate cloud backups to Microsoft Azure or Amazon Web Services (AWS) cloud or to StoneFly private cloud. StoneFly DR365™ - Backup and DR Appliance 3rd copy of data and the off-site copy StoneFly DR365™ is available in: Microsoft Azure Cloud Backup Copy 2U rackmount - maximum of 12 disk drives (SAS/SSD) 2U rackmount - maximum of 24 disk drives (SAS/SSD) 3U rackmount - maximum of 16 disk drives (SAS/SSD) 4U rackmount - maximum of 24 disk drives (SAS/SSD) 1st copy of data Backup 2nd copy of data and different storage media Restore StoneFly DR365™ Existing Infrastructure Impelementation of the 3-2-1 rule with DR365™ © 2023 StoneFly Inc. | All rights reserved. All trademarks used are the property of their respective owners.

6. 4 DR365™ Enterprise-level Data Features of DR365™ The All-in-One data center in the box is ideal for all kinds of organizations and businesses (SMBs/SMEs/Large Enterprises). The feature-rich hybrid backup and disaster recovery solution is equipped with a number of enterprise-level features, here are some of them: VM Scalable Capacity & Performance Advanced Data Security Reduced RTPOs Spin VMs directly on DR365™ Scale-out from a few TeraBytes to 2.5 PetaBytes of backup capacity. The addition of nodes enhances appliance performance by aggregating overall workload volumes on all the nodes in the system. Employ AES 256-bit encryption technology to secure data before and after transit. Data during transit is secured by SSL/TLS tunneling technology. The combination of SSDs and enterprise-level software delivers 1-click instant recovery within seconds. IT environments can backup, replicate, migrate and create VMs on DR365™ to be spun up directly whenever necessary. Microsoft Hyper-V Flexible Licensing Options Virtualization Environments Enhanced Utilization rates Ransomware Protection DR365™ supports VMware ESXi Essential, Essential Plus and Enterprise to as much as 512 nodes. DR365™ also supports Vsphere, Vcenter and Hyper-V with integrated support for System Center. DR365™ employs thin provisioning for space reclamation of iSCSI volumes. It also incorporates deduplication to enhance utilization rates and reduce the overall cost of the backup solution. DR365™ delivers advanced ransomware detection and prevents ransomware from gaining access to the backed up data. licensing options, our clients can choose to buy licenses from us or they can bring their own license to be integrated with DR365™. About StoneFly StoneFly pioneered the creation, development, and deploy- ment of the iSCSI storage protocol and products. Beginning with its registration of the iSCSI.com Internet domain name in March 1996, StoneFly shipped its first iSCSI storage appli- ance in 2002 and subsequently made iSCSI into the estab- lished storage standard which today is used by IT professionals around the world. Get financing To facilitate businesses with budget restrictions, we also offer a financing option. Businesses can direct their resources to the core operations while leveraging the IT infrastructure they need. Explore - Lease Option Learn more about StoneFly © 2023 StoneFly Inc. | All rights reserved. All trademarks used are the property of their respective owners.

7. www.stonefly.com 2865, 2869 and 2879 Grove Way, Castro Valley, CA 94546 USA. +1 (510) 265-1616