Protecting Your Backups Against Ransomware

What is Ransomware?

Ransomware is a specialized means of malicious software that encrypts files, renders them inaccessible until the user pays a ransom to decrypt the files. A ransomware infection can be debilitating to businesses and consumers alike. Ransomware infections can enter a system through various means, including:

  • Malicious attachments.
  • Embedded links in phishing emails.
  • Vulnerabilities in network services.

Protecting Your Backup Using Retention Policy Feature

Cloudberry Backup is equipped with an efficient means to help you keep your backup data safe from ransomware attacks. Even if your files are encrypted, your backups will be safe and available for restore without having to pay a ransom.

Using best practices with your Retention policy is an efficient means to secure your backups against ransomware attacks.

Best Practice Retention settings

To set up your backups protection against ransomware, customize the retention policy for your backup. Follow the hints below to create the custom retention policy that suits your needs and requirements.

  1. Select the backup plan you want to modify for protection, then click Edit.
  2. Follow the Setup Wizard steps until Retention policy step opens.
  3. Customize the following retention settings according to your preferences.

Specify custom retention policy for backup plan option allows you to create a customized retention policy which helps you to keep your files safe from ransomware attacks. Select it to activate the retention policy settings.

Delete versions older than option allows you to customize the periods of your file versions deletion. Select the appropriate check box to make the detailed settings available.

Specify the period of keeping your file versions for the required period of time to secure them from ransomware attacks. Select modification date or backup date from the drop-down menu to the right to specify the counting start timestamp.

Keep number of versions (for each file) option enables you to specify the number of file versions that are kept in your backup plan. This secures your files in case they are encoded by ransomware, as you can easily restore clean file version. It is recommended to keep at least 3 versions. You can specify the number of versions kept using the Number of versions spin box.

Delay purge for: option allows you to customize the period within which your file versions are not purged from backup. Select the corresponding check box, then specify the purge delay period (for example, 2 weeks).

Delete files that have been deleted locally option allows you to manage the deletion of files in your backup storage that are deleted locally. It is recommended to set a delay of 30 days or more to ensure any ransomware infection that renames files does not cause your old (good) backups to be removed from backup storage. With this setting, any locally deleted files will remain in backup storage for the specified number of days.

Do not show warning for files to be deleted is an option that allows you to avoid receiving warnings about the deletion of files stored locally. In order to be informed when files will be removed from backup storage, clear this check box.

The Ransomware detection feature has been removed in Cloudberry Backup 6.0.1. This change has no effect on existing or future backups.