Ransomware Exposes Needs About Data

Incidents that have been made public about ransomware have garnered a great deal of attention – from the general public, company executives, and from those charged with protecting and recovering from attacks.  Products used in Information Technology have been improved or newly developed to address some different aspects regarding ransomware.  And, as would be expected, vendor marketing has highlighted characteristics for their products that would seem to be relevant.

Based on our experience at the Evaluator Group with our clients and other affected companies, one thing that has become very apparent with ransomware is that IT needs to understand the data they are responsible for protecting and making available for legitimate use.  Understanding of the data is more complicated than many would think.  Some of this understanding is a need to know:

  • What is the profile for the data (usage, owner, priorities)? This seems simple but it involves knowing where data is stored, what are the different pieces (related elements) that are considered to be a set, and whether there are successive generations of data as part of its usage.
  • Which applications use the data? This may be more than one application in some more complicated operational environments.
  • What is the value of the data? Not all data has the same value.  This can make a big difference in the sequence of the recovery of ransomware or even a disaster.  The valuable or crucial data gets recovered first – setting the Recovery Time Objective by the value of the data.
  • What attributes of the data determine the decisions about recovery? This could be related to how much does it change over time which would affect the recovery point and the sequence for recovery.  Other attributes might be in regard to some dependencies for use affecting the recovery and other specific cases.  There may be a number of factors to understand regarding use and availability of data.

Key individuals in IT who understand the data must be included in a ransomware response plan.  This understanding is typically learned from experience with applications and normal processes of storing, protecting, and making the data available.  These individuals:

  • Are highly valuable to organizations,
  • Really are information asset managers,
  • Must be included in any strategy for ransomware recovery,
  • Need tools to be more effective and to enable others to gain similar knowledge and proficiency.

Lessons learned from working through precipitous events are hard-earned.  Needing to understand the data is one of those lessons required for  recovering from ransomware in a timely manner.

Author Information

Randy Kerns

Randy draws from over 35 years of experience in helping storage companies design and develop products. As a partner at Evaluator Group and now The Futurum Group, he spends much of his time advising IT end-user clients on architectures and acquisitions.

Previously, Randy was Vice President of Storage and Planning at Sun Microsystems. He also developed disk and tape systems for the mainframe attachment at IBM, StorageTek, and two startup companies. Randy also designed disk systems at Fujitsu and Tandem Computers.

Prior to joining The Futurum Group, Randy served as the CTO for ProStor, where he brought products to market addressing a long-term archive for Information Technology and the Healthcare and Media/Entertainment markets.

He has also written numerous industry articles and papers as an educator and presenter, and he is the author of two books: Planning a Storage Strategy and Information Archiving – Economics and Compliance. The latter is the first book of its kind to explore information archiving in depth. Randy regularly teaches classes on Information Management technologies in the U.S. and Europe.

SHARE:

Latest Insights:

Meta and Oakley Introduce Oakley Meta HSTN, a New Category of Performance AI Glasses Tailored for Athletes and Fans
Olivier Blanchard, Research Director at Futurum, shares insights on Oakley Meta HSTN - smart glasses from Meta and Oakley that blend AI, 3K video, and sport-focused design for hands-free performance and real-world utility.
Jim O'Dorisio, SVP & GM at HPE Storage, joins David Nicholson and Keith Townsend to share insights on transforming storage strategies for a data-driven world, the integration of AI in data management, and the imperative of cyber resilience.
HP and Google Push Enterprise Video Communication Into the 3D Era With AI-Powered, Wearable-Free Conferencing
Olivier Blanchard, Research Director at Futurum, shares his insights on HP Dimension with Google Beam and how it aims to transform executive collaboration with AI-powered 3D meetings, without wearables or headset friction.
Coherent’s Fiber-Based Femtosecond Laser Enters the Market With Sub-350 Fs Performance and Low Power Draw for Precision in Optogenetics and Microsurgery
Ray Wang, Research Director at Futurum, explores how Coherent’s Osprey laser brings precision and efficiency to microsurgery, optogenetics, and device manufacturing.

Book a Demo

Thank you, we received your request, a member of our team will be in contact with you.