The rising toll of data threat: why traditional backups are no longer enough

Daniel Werner is Director Technical Services,
Infinigate.

Businesses, whether large or small and irrespective of industry sector, face the considerable monetary impact of a potential data breach.  A recent report highlighted that the average cost of a data breach globally reached an all-time high of $4.88 million in February 2024, rising 10% increase over the previous year.

 If the increasing number of data breaches weren’t enough, cybercriminals also target backups in most of their attacks to block the recovery of sensitive data.

To prevent attackers from compromising backups and preventing data recovery, companies should implement multi-layered security strategies. The concept of air gaps, in which a physical or logical separation is created between active systems and backup data, plays a central role here. This can be achieved by using tape backups or hardened repositories, which prevent direct access to the backed-up data even if the network is infiltrated.

Additionally, it is advisable to implement isolated user accounts that are not linked to the Active Directory for backup software, as well as continuous monitoring within the storage system. Strict separation of responsibilities, in which different groups of people are responsible for different backup media, reduces the risk of widespread compromise.

The latest security best practices also include the use of multi-factor authentication (MFA), especially for cloud backup accounts, to prevent unauthorised access. Regular backups according to the 3-2-1 rule, where data is stored in multiple locations, increase resilience to attacks. It is equally important to routinely test and practice data recovery to ensure a quick and effective response in the event of an emergency.

Preventive measures such as data loss prevention (DLP) systems, strong encryption and strict access controls form another line of defence. In addition, detective DLP methods, such as protocol analysis and forensic investigations, enable early detection of security breaches. Last but not least, regular software updates and the installation of reliable security solutions on all end devices play a crucial role in protecting against cyber attacks.

By combining these strategies, companies can build a robust defence system that ensures the integrity of their backups and significantly improves the chances of successful data recovery in the event of an attack.

Technologies that will change data security

AI and automation are shaping the future of backup solutions. Companies are increasingly turning to advanced technologies, such as artificial intelligence and machine learning, to optimise backup processes and detect threats at an early stage. This development not only increases efficiency but also improves security by detecting and defending against cyber threats at an early stage.

Furthermore, automated backup solutions are becoming increasingly important because they minimise human error and increase the reliability of data backup. They also enable consistent and regular data backup, which is essential given the growing volumes of data and the increasing complexity of IT infrastructures.

The increasing complexity of IT architectures, especially due to the proliferation of multi-cloud and hybrid environments, presents companies with further challenges. Modern backup solutions must ensure seamless backup and recovery processes across different cloud platforms. This requires flexible and scalable approaches that can adapt to the specific requirements of different environments.

At the same time, data protection and data sovereignty are becoming increasingly important in global networks. The trend towards data localisation in the EU, driven by the desire for digital sovereignty, is in tension with the need for global cybersecurity measures. Future solutions must strike a balance between local data protection and the use of global security infrastructure in order to meet both regulatory requirements and provide effective protection against cyber threats.