Business News

Mon Mar 7

Defending your last line of defence: protecting your backups

Written by Ryan Weeks, CISO, Datto

In the last twelve months, we’ve seen ransomware continue to wreak havoc on organisations, governments, and individuals across the globe. In May 2021, the Colonial Pipeline ransomware attack brought the gasoline supply on the east coast of America to a standstill for days. In November, millions of Australians came within minutes of losing power to their homes in a ransomware attack on a Queensland power station.

Meanwhile, ransomware attacks on Australian organisations increased 15 per cent in the past financial year, contributing a significant portion of the 67,500 cybercrime reports received by the ACSC.

Ultimately, ransomware continues to mutate and adapt, with a variety of tactics being specially employed to best exploit targets.

One incredibly effective ploy involves threat actors employing a two-pronged ransomware approach. First observed in 2018, attackers will go after an organisation’s backups before encrypting systems, meaning attackers can strip a business of their last line of defence before their presence is even known.

It’s a cyberattack method that is occurring more frequently and on a larger scale, and highlights the need for organisations to revisit their business continuity and disaster recovery (BCDR) strategy and take measures to ensure their backups are secure.

Backup software requires a high level of access to files, systems, virtual machines, databases, and other aspects of a computing environment, creating additional risk. To minimise this risk, companies need to take a multi-step approach, both on-premises and in the cloud.

It’s imperative businesses employ a multi-factor authentication (MFA) process for access to both the backup administration portal and for activities that have the potential to manipulate or delete backup data, as this will significantly limit a hacker’s ability to access systems.

Joining the dots, covering all bases

There’s a variety of interconnected factors to be aware of when securing backups. It’s important to consider every endpoint and every application as a potential vulnerability, as any one of them could give hackers access to your most valuable data.

Be sure connections cannot be made directly to a backup appliance. Heavily restrict local backup appliance remote access on the LAN and implement layers of protection to prevent malicious access. If a remote monitoring and management solution (RMM) is used to manage the backup appliance, then this could be another point of attack and security needs to be heightened on the RMM access controls. In addition, separate the appliance from backups stored in the cloud with independent authentication mechanisms. Never store admin credentials for the appliance or the cloud in a local browser, attackers can access them in seconds.

Backup files are easy targets, because file extensions, such as .bak, are easily located. To keep backups secure, they should be stored in read-only state. If encrypting, follow best practices, such as storing the encryption key on a separate physically secured device and only loading it into memory on the device doing the encryption. In addition, proactively scan backups for ransomware.

Finished backing up? Good, now do it again

It’s best practice to maintain multiple copies of backups in separate secure locations and limit the ability to modify the data or its storage. This is crucial for situations in which a threat actor has managed to encrypt your data. Moving from cyber protection to cyber resilience requires businesses to take an assumed-breach approach to cybersecurity and be ready for anything.

Current backup solutions can provide several point-in-time recovery points, as well as the ability to replicate backups to cloud storage. In addition, protect backups from unauthorized and accidental deletion by creating a delayed delete time window.

When testing backups on a regular basis, make sure testing includes full restoration. Perform bare metal restorations as it would occur in a real disaster situation. Finally, confirm that network connectivity can be re-established, key services (i.e. Active Directory) are properly working, applications can communicate with each other and document everything in a recovery plan.

Backups are an organisation’s last line of defence, and threat actors know it. Many are now modifying their malware to actively track down and eliminate backups, leaving victims at their mercy.

Take the necessary steps to start 2022 off on the right foot. If necessary, upgrade your systems, and run regular tests to ensure your backups are safe, uncorrupted, and readily available for instant recovery. Adopt an assumed breach model, and work towards a cybersecurity posture that looks past protection to resilience.

Fri Mar 4

Aussie Entrepreneur Helps Solve Hospitality Issues One QR Code At A Time

Written by Co-Founder and CEO Taf Chiwanza

Over the past few years, we have seen big changes in the hospitality industry thanks to innovative technology (and the pandemic!). At payo, we’ve made it our mission to support the hospitality industry by introducing our technology to the restaurant, bar and cafe scene.

Launching in March 2021, payo has applied the popular buy now, pay later (BNPL) technology specifically to the hospitality industry, encouraging more people to dine out while allowing customers to eat now and pay later. The first of its kind in the Australian market, payo demonstrates how ‘new technology’ can seamlessly integrate with the hospitality industry.

Buy now, pay later across the board has enjoyed a huge rise in popularity and there’s little doubt that it’s going to be a regular fixture in Aussies ongoing spending habits. The adoption of BNPL is set to continue to grow 24% by 2028 and all signs point to hospitality venues reaping the benefits with the implementation of technology and apps like payo.

Within our first year, we’ve seen a growing demand from consumers and business owners, with early data telling us that payments with payo have seen the average order value increase by 50%.

Australian’s enjoy dining out and even more so when they know they have financial flexibility and the option to split the bill (with payo, they can pay in four interest-free payments). For payo, we’re not just stopping with the BNPL functionality. Our users can also get access to exclusive offers at hundreds of restaurants and as of this month, can now also pay the bill at the table with our latest innovation, payo checkout.

Adding another layer of support to the hospitality industry, payo checkout eliminates wait times, with customers able to pay their bill by scanning the unique QR code on their table. Customers can choose to use any type of credit or debit payment as the platform allows Apple Pay, Google Pay or payo and integrates seamlessly with merchants' POS systems. So what does this mean for merchants? They can now turn tables over quicker than ever, with contactless payments enabling them to focus on providing great food and service.

We’ve all seen the resurgence of QR codes as a result of the pandemic and we believe that table ordering platforms and ongoing QR code integration has an important place in the future of hospitality. Having applied this technology to payo checkout, we’re excited by the support and benefits that table ordering technology is bringing to the industry.

Payo checkout has helped solve two legacy problems in our quest to reduce friction with payments - waiting for the bill and being able to split the bill. Diners can split the bill, evenly or by individually choosing what each person ordered. No more awkward conversations about who ordered what, how to split the bill or who pays. Improving restaurant efficiencies, we’re also giving staff time back in their shift versus spending almost 30% of their working hours on finalising bill payments.

With such benefits to both customers and vendors, it’s important for the industry to keep evolving and that vendors have an open mind when it comes to trying and implementing new technologies. We’re confident the adoption and integration of technology will continue to grow and with it, so will our expansion across Australia. Payo is already available in Brisbane, Melbourne, Sydney and the Gold Coast and with more vendors responding to the changing needs of customers, our aim is for payo to be available in every major city across Australia.