2020, happy holidays, happy holidays 2020, health disaster, data continuity, data protection, protect data, health emergency, protect health data, medical data, protect health data, BaaS, DRaaS, disaster data protection, health data protection

Hello friends,

As 2020 draws to a close, Storagepipe wants to thank our customers, partners and supporters for working alongside us during this remarkable and challenging year to continue to protect your businesses and organizations.

As the pandemic introduced a global health disaster unseen in scale since the early 20th century, Storagepipe responded to urgent requests for help from customers old and new alike as they fought to keep their lights on.

Fortunately, responding to disaster is what we do best.

From enabling businesses to rapidly adopt remote collaboration technologies like Microsoft Teams and SharePoint with confidence, to safeguarding communications through Managed Anti-Spam for email continuity and integrity, to providing Managed Firewalls for a sudden influx of workers connecting from home, and as always, backing up your valuable data and helping you to recover when emergencies strike, Storagepipe has been at our customers’ sides every step of the way.

Storagepipe is proud of every business that we’ve helped to stay connected and protected – our customers are resilient, hardworking, and innovative in the face of, as the saying now infamously goes, “unprecedented times.”

Thank you for your trust in us. It has been an honour to have been a part of your success in 2020.

Happy Holidays and all the best for 2021!

The Storagepipe Team

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global DRaaS provider of comprehensive cloud, data protection and security services and can help to provide guidance as you work through your SMB or enterprise DR planning process.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind. Storagepipe is an accredited Microsoft Office Level 1 backup and DRaaS provider.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around partnering with us to provide your customers with data loss prevention solutions and rapid ransomware recovery with services such as Cloud to Cloud Backup for Microsoft 365, email archiving, and Storagepipe DR services. Regardless of internal user error, ransomware attacks, or when a health disaster strikes, ensure your business continuity by meeting your operational demands while protecting and recovering your most valuable asset – your data.

DRaaS provider, DRaaS, disaster recovery, DR, DR Plan, DR Planning, disaster recovery plan, disaster recovery planning, data disaster, data disaster recovery, data backup, cloud backup, cloud backup services, Veeam Software backup services, backup services, BaaS, Cloud BaaS, Cloud BaaS provider, Veeam, Veeam Cloud Connect, Cloud Connect

You’ve embraced remote working – are you still secure?

The trend towards remote working has been growing for several decades, but recently due to world events, many businesses have had to adopt supporting technologies and processes quickly and under pressure. The remote working trend has also dovetailed with the move to the cloud and software-as-a-service applications like Office365. Cloud services are a great help in implementing remote working and in helping teams to collaborate even when not working in the same location. Cloud-enabled services and applications are often misunderstood, however, when it comes to security measures. Along with their SaaS services, businesses also need to consider using cloud-based security and disaster recovery services in parallel from a trusted DRaaS provider.

SaaS and Cloud providers like Microsoft, Salesforce, Google and others promise to secure the infrastructure that hosts the cloud application. But these SaaS providers are not responsible for covering all of the possible data and security issues that can arise, so customer support for backup, replication, and recovery services needs to be considered.

While the cloud provider takes care of the infrastructure, data and access remain the customer’s responsibility. The access risks compound as workers increasingly work remotely and communicate through email, which is the number one vector for malware.

Secure access to the cloud for remote workers today is usually ensured by either using an SDP or split-tunnel VPN. In either case, the security of remote access relies on user authentication. It is important not to make the mistake of relying on the employees to set up and manage their passwords. Individuals are notorious for setting easy-to-remember but also easy-to-guess passwords. Set up strict corporate password policies and enforce them. Also enforce regular intervals for employees to update their passwords.

Even with these stricter password policies in place, businesses would also be wise to employ multi-factor authentication (MFA). There are a number of ways for bad actors to manipulate or trick your employees into unintentionally revealing their passwords making it a good idea to have a second authentication method as a further roadblock. Traditionally MFA was done using tokens, but it has become much simpler today to use the employee’s smartphone to send a code that they then enter into the SaaS login credential screen. There are a number of good choices for MFA available such as Google Authenticator, or options recommended by Microsoft. Need help determining which MFA solution is the best fit for you? Ask our O365 experts today!

Even MFA access through SDP or a VPN will not always guarantee security for your most precious data; internal employees can also act maliciously. Therefore, it is a good idea to design your internal data access policies to ensure that each end user only has access to the applications and data that they need to do their jobs.

Segmenting your data collections is another good policy to adopt for additional cybersecurity and data protection. Having all your eggs in one basket is never a good idea. Using various software-defined networking techniques such as SDPs or SD-WAN, you can literally define the connection between the user’s device and a specific server. They can be completely restricted to this network slice. Finally, think carefully about which workers get remote access; not everyone needs it all the time.

One main vector for security breaches is via email “spear phishing” attacks, which attempt to induce people to reveal personal information, such as passwords and credit card numbers by posing as reputable companies.

Phishing is a common technique for extracting passwords from employees with some IT professionals reporting 1000+ phishing attempts hitting their email inboxes a month. Other malicious email campaigns include sending attachments with embedded trojan code, or links pointing to compromised websites that auto-download malware onto users’ systems.

All employees are at risk of making a split-second poor decision and exposing their computer to these attacks. Threat actors are adept at choosing topics that people are eager to learn more about, often playing off trending fears and anxieties to lessen people’s natural caution and common sense. As a sign of the times, many organizations are reporting increased email phishing and Business Email Compromise (BEC) attacks since the beginning of the COVID-19 pandemic, with many messages claiming to offer breaking news or free tests. Once the pandemic has finally abated, threat actors will move on to the next anxiety-provoking topic.

While Microsoft other email SaaS providers often try to help to filter unwanted senders’ messages by verifying the IP address to guard against phishing, oftentimes their off-the-shelf attempts lack comprehensive protections and may lag behind in updating against the latest threats. IT professionals should look to enhance their email security by looking for solutions that offer services for scanning both inbound and outbound emails to eliminate spam and known attacks, and managed IT services for analytical reporting, cybersecurity and on-demand expertise from a trusted DRaaS provider.

While it is critical to stay on top of the latest security threats and trends, it is also the case that malicious actors are constantly innovating new attack strategies. Barely a week goes by that some new kind of threat is launched and discovered. From denial of service to trojan horses and ransomware, you can never rule out the possibility that your business will be the next headline victim and cautionary tale.

 

How does a DRaaS Provider enhance Microsoft 365 data protection and cybersecurity?

That is one of the most important, but not the only, reason to have a comprehensive backup and rapid disaster recovery service. Another reason is that employees unintentionally delete data all the time. In fact, they are the most common source of data loss. Even IT professionals can make configuration mistakes that can open data to being hacked or even lost. So, a comprehensive backup and disaster recovery option is essential for restoring your data.

This is where cloud services expand their usefulness from a means to collaborate efficiently, to storing and protecting your critical and everyday business data. Disaster Recovery as a Service (DRaaS) has become increasingly important in an era of escalating natural disasters, cyber-attacks targeting critical public institutions and businesses, and sophisticated social engineering campaigns bombarding your business day and night.

The good news is, as the importance of DRaaS has risen, the affordability has too. Many savvy organizations are leveraging the flexibility and rapid responsiveness inherent in cloud-enabled backup and recovery. After all, one of the many reasons that you adopted a cloud model was to get away from the capital costs and ongoing operating expenses associated with running and maintaining your own internal data infrastructure. Now that there are a range of cost-effective disaster recovery services available, businesses are finding that DRaaS makes good common sense.

In addition to helping you to recover from a disaster, an experienced DRaaS provider can also proactively help you to prevent data disasters from occurring in the first place, and enable your business to work securely no matter where your end users are located. As a third-party specializing in helping businesses to recover from various disasters, they are best placed to anticipate what your business might face in the future. They can help you to design your security approach, as well as prioritize your data resources, segmenting them and working with you to create a plan for ensuring that the most critical data is restored as quickly as possible to keep you up and running.

The possibility of remote working and cloud-based services have been a godsend for many businesses, allowing them to remain operational in these difficult times. It is unlikely that the workplace will return to what it was and remote work is probably the new normal or highly significant for many businesses going forward. Your DRaaS provider can make sure that you do it securely and ensure that you can also recover gracefully if anything does go wrong.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global DRaaS provider of comprehensive cloud, data protection and security services and can help to provide guidance as you work through your SMB or enterprise DR planning process.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind. Storagepipe is an accredited Microsoft Office Level 1 backup and DRaaS provider.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around partnering with us to provide your customers with data loss prevention solutions and rapid ransomware recovery with services such as Cloud to Cloud Backup for Microsoft 365, email archiving, and Storagepipe DR services. Ensure your business continuity by meeting your operational demands while protecting and recovering your most valuable asset – your data.

DRaaS partner, strategic portfolio, strategic service portfolio, MSP, DR, disaster recovery, DR portfolio, disaster recovery portfolio, disaster recovery offering, disaster recovery services, disaster recovery services partner, disaster recovery partner, disaster recovery technology, disaster recovery technology partner, DR partner, DR technology, DR technology partner, cloud backup partner, cloud backup, cloud backup services, MSP DR services, managed DR services, managed disaster recovery, managed disaster recovery services, managed DR services partner, managed disaster recovery services partner

You may already be managing backup services for some of your clients, but haven’t yet expanded to offering a complete disaster recovery service. Or you simply haven’t added managed backup or disaster recovery (DR) to your service portfolio at all. Either way, there are good reasons to consider offering your customers DR, not just as a source of recurring revenue, but also as a sticky service that can create a more trusted advisor relationship that leads to new business. It has become easier to add DR to your portfolio with the advent of Disaster Recovery as a Service (DRaaS), especially when working closely with a DRaaS partner.

DRaaS is a perfect example of an on-demand cloud service that is always-on and scales with your client’s needs. For you and your customers, there is the added benefit that you don’t need to keep a second data center for redundant servers and communications services. An additional perk for you is that DR brings in new customers, such as SMBs, that will find it easier to start small and scale as they grow.

DRaaS offers three other main benefits to your customers:

  1. Immediate recovery from any kind of disaster with system failover to a secondary infrastructure within minutes.
  2. Depending on needs and resources, customers get the flexibility to customize the scope of recovery from all types of disasters, from malware and ransomware to hurricanes and wildfires.
  3. DRaaS offers seamless redundancy and no single point of failure to keep data securely protected in the cloud and away from the primary site.

Working closely with a customer to plan for recovery from a disaster that could jeopardize their business, requires that you get a clear understanding of their key operations and those parts of the business that are mission-essential. This disaster recovery planning approach is more strategic and collaborative between provider and customer than with a managed backup service, and requires you and the customer to predefine playbooks for exactly how to respond to different disaster scenarios. This is your opportunity to take your relationship with your customer to a new level. If you are able to add value and insights, you can earn their trust and develop a longer-term relationship with greater revenue potential.

Working on the disaster plan will involve taking the customer through a thorough risk assessment to identify vulnerabilities in their infrastructure. You may ask, which components are the most important and how do they impact their critical business functions? You will need to calculate both the financial and non-financial costs. Besides loss of revenue, there is the potential loss of opportunity; for instance, companies that recover faster, gain a competitive advantage.

The goal of all this analysis is to develop with the customer what they believe is their realistic recovery time objectives (RTO). In other words, how long can their infrastructure afford to be down? This is often a compromise between what they view as ideal and what they can afford. Similarly, you will also set the recovery point objectives (RPO), which define what level of data must be recovered and at what time-based increment or schedule, which should follow directly out of the analysis of critical business functions.

Qualities and Benefits of a Reliable DRaaS Partner

Having a technology partner that is focused on providing disaster recovery can be helpful during this process. A good DRaaS partner will have extensive experience in helping companies recover from many different kinds of disasters. This experience can be leveraged in formulating a sound disaster plan. And should the time come that a disaster does occur, it’s good to have team members onboard who routinely handle disaster situations and are able to meet the challenge with a measured and effective response that only comes with experience.

Your DRaaS partner will be particularly useful in the setting and defining of RTO and RPO objectives. These objectives set the parameters for the SLA you agree to and defines your relationship and your obligations going forward. This includes identifying the cost-effective services and configurations that are recommended for your customer to meet their RTO and RPO, including full or partial failover, and hot site or warm site replication. It is critical to get it right at the beginning, and this is where the extensive experience of a DRaaS partner can be drawn upon to ensure that the defined service achieves the customer’s objectives as well as your own.

Finally, your ultimate objective in defining a DR plan for your customer is to identify where they are most vulnerable and to help them to address those weaknesses to prevent disasters altogether. Again, you will have to move the needle on your relationship to go beyond reacting to their needs to anticipating them, and as a result positively shape the way they operate their business.

This is why DRaaS is much more than an additional revenue stream or a sticky service, although it is both these things. It is above all an opportunity to move you from being regarded as just a service provider to being a trusted strategic long-term partner for their business.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services and can help to provide guidance as you work through your SMB or enterprise DR planning process.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around partnering with us to provide your customers with data loss prevention solutions and rapid ransomware recovery with services such as DRaaS Veeam managed appliance for VMWare and HyperVDRaaS physical server replication, and other Storagepipe DR services. Ensure your business continuity by meeting your operational demands while protecting and recovering your most valuable asset – your data.

DRaaS, DR, DR Plan, DR Planning, Backup, Data Backup, Cloud Backup, Enterprise Disaster Recovery, Disaster Recovery, SMB Disaster Recovery, Enterprise Business Continuity, Enterprise Data Continuity, Data Continuity, Disaster Recovery Planning, Enterprise Disaster Recovery Plan, Enterprise Disaster Recovery Planning, SMB Disaster Recovery Plan, SMB Disaster Recovery Planning, SME Disaster Recovery, SME Data Continuity, SME Disaster Recovery Planning, SME Disaster Recovery Plan, Veeam Backup, Veeam Backup and Recovery, Data Backup and Recovery, Data Backup and Restoration, Data Restore, Data Restoration, Failover, Hot Site Failover, Warm Site, Warm Site Failover, Managed DR Services, Managed IT DR, Managed IT DR Services, DR Services, Disaster Recovery as a Service, Enterprise Disaster Recovery as a Service, Enterprise DR Planning

We usually think of being ready for a disaster as a kind of insurance policy against a low probability event. This approach treats SMB and enterprise DR planning as necessary, but hardly strategic, and most of us would never consider it as a competitive advantage. We should.

In the spring of 2007, just before the 2008 financial crisis hit, Nassim Taleb presciently published a widely read book called The Black Swan: The Impact of the Highly Improbable. As if reading from a crystal ball, Taleb laid out his thesis that as our global economy scales and becomes more and more complex, we would begin to see the unforeseen and unpredictable more and more often. He argued that to be competitive and truly profit from these unpredictable “black swan” events, you have to organize your business strategy to be ready for them, even if they seem very unlikely.

Effective Enterprise DR Planning Includes Cybersecurity, Public Health, and Natural Disasters

Since then we have had at least two of these worldwide seismic events. The most recent, the current pandemic, has been a wakeup call for every business worldwide. Disasters on a global scale do happen and, as it turns out, some businesses have been better prepared to meet the needs of their customers during this event. These companies have not only realized a short-term competitive advantage, they have secured a firm foundation for their future growth.

But if disasters are unpredictable black swans, how do you plan for them? Taleb shows through a series of examples how important it is to think through the worst kind of risks that you might face and take out insurance against those possibilities. If the risk seems low to everyone else, then it will probably turn out that it doesn’t cost that much to insure yourself against it. And a corollary of this principle, if the worst happens, you will also probably be one of the few survivors. Which can put your business in a very strong competitive situation.

One of the important pieces in your disaster insurance strategy has to be a good disaster recovery plan for your company’s data. Cybersecurity events fall into that class of newly emerging black swan threats that face every business. As we embrace autonomous technologies built around IoT, AI and machine-learning, we are unleashing tremendous productive potential, but we are also setting ourselves up for a potential perfect digital storm.

Much as public health professionals have been warning us of the possibility of a pandemic for the last few decades, cybersecurity professionals have been trying to alert the world to its precarious state around digital security. No one knows exactly how or what will occur, but most who work in this field are concerned that we have a good chance of seeing a major cybersecurity event in the coming decades. Will your business be ready to survive and potentially even profit from it?

Key Considerations for SMB and Enterprise DR Planning

As gloomy as these threats are to contemplate, effective enterprise DR planning has to start with thinking through the worst-case scenarios that you might face so that you can ensure that resources and processes are in place to prevent or rapidly recover from a disaster.

Here are some key considerations at-a-glance. For a complete framework and further step-by-step details, download our free Disaster Recovery Plan Template.

  1. Start by looking at what parts of your business systems, applications and data that you simply cannot afford to lose.
  2. Then take it to the next level by asking, “If all of my competitors were knocked down by the same event as me, what kinds of data recovery would give me an immediate advantage?” There could be an easily achievable difference between being minimally operable and able to pounce on a once-in-a-lifetime opportunity.
  3. In developing a good data disaster recovery plan, you need to analyze the vulnerabilities in your IT infrastructure and identify the critical components of your operations. This has to be linked to a thorough analysis of your business functions and an assessment of which are the most critical to your ability to not only survive but successfully compete.
  4. You must also ensure that your disaster recovery plan is well understood by your teams. Ensure that they are prepared to execute the DR plan when the time comes. This is difficult to do when the threat is a black swan event that is unpredictable and looks to most people consumed in their daily to-dos as highly theoretical, at best.
  5. For this reason, it is important to fully script out the responses to a wide variety of emergency scenarios. Training and periodic trial runs — fire drills — are also a good way to ensure that when the moment comes, people will have developed some engrained patterns that they can fall back on when their amygdala has gone into overdrive.
  6. To ensure that you have the skill sets and coverage needed during a disaster, also think about engaging the services of a third-party disaster recovery team. We have fire-fighters and other first responders for a very good reason. Training and constant practice in dealing with disasters is the only good way to be prepared for them when they strike. However, most businesses and organizations want to avoid having ‘constant practice’ with recovering from disasters for obvious reasons.

A disaster recovery partner can allow you to focus on your day to day operations, while also having access to reliable and specialized backup and recovery support. A DR partner can apply the deep expertise that they have honed with disasters day in and day out to your specific business needs. They can help you think through your business priorities, identify vulnerabilities in your systems, design backup systems and protocols, and provide critical and rapid response support. This will ensure that you cannot only recover gracefully but seize the moment when your competitors cannot.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services and can help to provide guidance as you work through your SMB or enterprise DR planning process.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around data loss prevention and rapid ransomware recovery with services such as DRaaS Veeam managed appliance for VMWare and HyperVDRaaS physical server replication, and other Storagepipe DR services. Ensure your business continuity by meeting your operational demands while protecting and recovering your most valuable asset – your data.

Hurricane, Hurricanes, DRaaS, Disaster Recovery as a Service, Hurricane DRaaS, Hurricane Disaster Recovery, Data Recovery, DRaaS natural disaster, natural diasaster data loss, BaaS, Backup as a Service, O365 backup, M365 backup, O365 data backup, M365 data backup, DraaS hurricane, data continuity DRaaS, data continuity BaaS, hurricane data continuity, hurricane business continuity, business continuity, Veeam, offsite backup, DRaaS offsite backup, colocation, DRaaS colocation, BaaS colocation

The 2020 Atlantic hurricane season began on June 1 and is well underway; for the first time in recorded history, nine named tropical storms formed before August and thirteen formed before September. Out of those storms, Hanna developed into the first hurricane of the summer as a category 1 event, striking South Texas in July and leaving behind an estimated $485 million USD in damage. That’s one heck of an opener to the season!

The escalating frequency and severity of these natural disasters is posing an urgent and critical threat to businesses and organizations located along the Gulf of Mexico, the North American Eastern Coast from Florida all the way to Newfoundland and Labrador, and the Caribbean. Already struck by economic hardships from the pandemic, these regions simply cannot afford another catastrophe on their shores – and yet they are barreling towards them at an alarming pace with many organizations unprepared and without hurricane disaster recovery in place.

While the season typically peaks by September 10, the second half of the 2020 season is projected to be just as volatile. The National Oceanic and Atmospheric Administration (NOAA) has predicted that in total, we may see between 19 – 25 named storms between June and November 30 – the first time that the agency has ever predicted that we may have to start using the Greek alphabet to name our storms.

Out of those 19 – 25 named storms, NOAA forecast that 7 – 11 will become hurricanes, with 3 – 6 of those becoming major hurricane events with extreme damage and potential loss of life. As of this writing in early September, we have already seen 15 named tropical storms. Out of those, 5 became hurricanes with one developing into a major 3+ category storm. The 15th tropical storm was named Omar on September 1, breaking the previous record held by Ophelia in 2005 for earliest named 15th storm of the season.

Enabling Effective Hurricane Disaster Recovery

While early preparation is the best way to mitigate risks to businesses from a wide range of threats, given the early onset, rapid succession and severity of these storms, many organizations have been caught flat-footed. Most have had little time to check that their hurricane disaster recovery plans are in place and updated after only recently activating pandemic planning processes. Many are looking for help to address IT business continuity with their already stretched resources and expanded demands for DR.

An experienced cloud backup and disaster recovery service provider can address many of those business needs by lending their specialized expertise for effective hurricane disaster recovery planning and best practices while also recommending the best and most cost-effective Disaster Recovery as a Service (DRaaS) solutions. DRaaS providers can support your team with on-demand services such as managing your offsite data replication to a secure datacenter and ensuring that data is stored geographically distant from threatening storm systems.

Need some guidance? We’re here to help! Get our free Disaster Recovery Planning Template here.

Have questions? Our team is ready to help you weather the storm. Contact us today!

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around data loss prevention and rapid ransomware recovery with services such as DRaaS Veeam managed appliance for VMWare and HyperVDRaaS physical server replication, and other Storagepipe DR services. Ensure your business continuity by meeting your operational demands while protecting and recovering your most valuable asset – your data.

Secure Remote Access, Remote Access, Login, Remote Login, Secure Login, Secure Remote Login, Secure credentials, secure portal, remote portal access, cybersecurity, ransomware prevention, ransomware mitigation, ransomware best practices, cybersecurity best practices, storagepipe, Veeam, Veeam Software, disaster recovery, DR, DR Plan, DR Planning, backup, cloud backup, data backup, failover, rapid recovery, data recovery, data disaster, data disaster recovery, replication, replication and failover, hotsite, warm site

Secure remote access safeguards sensitive data transmission when applications are accessed from devices outside of the corporate network. It also enhances cybersecurity by introducing complexities for threat actors. In many cases, vulnerabilities in software applications, especially critical ones, may become harder to exploit as the configuration of the service begins to move away from the generic default to a more customized configuration.

What is Secure Remote Access?

Secure remote access is an umbrella under which a number of security strategies reside. It can refer to any security policy or solution that prevents unauthorized access to your network or sensitive data.
With more remote workers, different techniques may include the use of both VPN and RDP together (using different authentication mechanisms), implementation of multi-factor authentication (MFA), restrictions on which accounts may use remote access, during what times, with what password strength, and internal operating system controls that manage and protect passwords and authentication processes.

Why is Secure Remote Access Important?

If an organization does not implement any other layers of authentication besides the standard login with a username and password, there is a higher probability of a successful ransomware attack which could result in encryption and exfiltration of data, demands for payment, damage to reputation as well as lost data and revenue.

Read our Ransomware Best Practices eBook for insights on security threats and steps that you can take to mitigate your risk and rapidly recover from an attack.

Remote Access Risk Mitigation While Keeping it Simple

Some of the most effective ways to potentially reduce the risks associated with remote access systems are also some of the simplest:

  1. Disable remote access technologies if not absolutely required for the business.
  2. Restrict remote access to only the users that require such access, and restrict individual user access to only the services/systems that such users may require.
  3. Use current versions of operating systems and applications, and regularly update and patch. Critical patches should be applied to remote access systems within 3-7 days.
  4. Enforce a strong password policy with regular password changes. Strong password policy means both strength of the password but also complexity, lock-out policies and similar settings.
  5. Restrict and segment remote access services based on data classification.
  6. Use a VPN with MFA if you do use RDP.
  7. Where possible use multiple account login credentials as opposed to configuring all layers to authenticate via the same active directory.
  8. Implement internal monitoring tools to ensure that access is being used correctly and that systems are not being accessed outside of normal parameters.

Storagepipe Can Help

Old access security measures are no longer enough to ensure that your cybersecurity strategy is protecting your data and business continuity, and must be replaced with safeguards that allow employees and other verified users safe and secure access from anywhere, at any time, from any device.

We can provide your business with a suite of customized options to safeguard your business. Contact us now to get started.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around data loss prevention and rapid ransomware recovery with services such as DRaaS Veeam managed appliance for VMWare and HyperVDRaaS physical server replication, and other Storagepipe DR services. Ensure your business continuity by meeting your operational demands while protecting and recovering your most valuable asset – your data.

Remove Adobe Flash, Adobe Flash, End of Life, Adobe End of Life, Adobe Flash End of Life, Flash End of Life, Flash Discontinued, Flash Discontinues, Adobe Flash Discontinuation, Adobe Flash 2020, Flash 2020, Flash 2020 End of Life, Adobe 2020 Discontinued, Cybersecurity, Adobe Flash risk, Flash risk, Flash cybersecurity, Flash risk mitigation, Flash threat actors, threat actors, Adobe vulnerability, Flash vulnerability

Adobe has announced that the Flash Player and its respective components will no longer be distributed or updated as of December 31, 2020. While security patches will still be updated as Adobe winds down their management of Flash, it is prudent for businesses and IT professionals to anticipate longer timelines for their deployment, with the exception of critical concerns. Organizations worldwide are being advised to prepare to remove Adobe Flash before the end of life date to mitigate data cybersecurity risks.

Please note that into November and December, there is a good chance that threat actors will take advantage of the less frequent security patch releases and that attacks against Flash will increase following EOL situations. With the discontinuation after December 31, these attacks are predicted to escalate into 2021.

Follow these steps to remove Adobe Flash and ensure a smooth transition:

Perform an inventory.

Understand what systems have Flash currently installed using your software inventory system. Software inventory systems are critical to supporting security patches, pragmatic updates and end of life systems. If an inventory does not exist, security or inventory scanning applications can be used.

Establish a cut-off date.

For example, you may decide to remove Adobe Flash by end of September 2020 to ensure that you have enough time to test your systems post-removal, implement any replacement solution, troubleshoot issues, and acclimatize your end users to the transition before the end of life date forces an abrupt and disruptive change. Examine your calendar for an appropriate day and send a message to all staff that:

  • Flash will be removed from all systems
  • The reason why
  • That it will be black listed
  • If you use sites with Adobe Flash – let IT know
  • The date of removal

Determine any systems that use Adobe Flash.

This might be a cumbersome task, but it’s important to know if any of your business systems and applications use Flash. You may be surprised by how many do, and by how many have not removed it yet. For each of these systems and applications, contact the provider and ask what their timeline is for removal and what they plan to roll out in its place. Make sure to check your network gear and servers especially.

Remove Adobe Flash.

Remove Flash from all systems using your inventory control or services automation solution. Centralized removal of software followed by blacklisting is critical to ensure continued security. Make sure to run an inventory check before and after the removal of Flash to confirm that your systems are clean, and then validate every thirty days for 90-days to check for rogue installations. Add this validation to your routine blacklist inventory scanning practice.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around data loss prevention and rapid ransomware recovery with services such as DRaaS Veeam managed appliance for VMWare and HyperVDRaaS physical server replication, and other Storagepipe DR services. Ensure your business continuity by meeting your operational demands while protecting and recovering your most valuable asset – your data.

Disaster Recovery Services, DRaaS, Cloud, Cloud Backup, Cloud DRaaS, Cloud Strategy, Data Backup, Cloud to Cloud, Cloud to Cloud backup, DRaaS Replication, Replication, VM, virtual machine, virtual machine replication, VMWare, HyperV, VMWare Backup, VMWare replication, failover, hot site, warm site, disaster recovery, disaster recovery planning, disaster recovery plan, managed appliance, veeam, veeam managed appliance, Veeam DRaaS, Veeam Cloud, Cloud Connect, Managed Services, backup as a service, disaster recovery as a service, Veeam partner, Veeam Cloud partner, Veeam platinum partner, VCSP, Veeam Cloud Service Provider, Veeam Cloud Service Partner

As businesses pursue digital transformation, their key assets are shifting from physical infrastructure to data. Artificial intelligence (AI), machine learning and other kinds of analytics rely on data to power their algorithms. Data is now the most valuable asset for many businesses; not just customer and financial data, but operational data as well. Loss of that data for even a short time can bring operations to a standstill. And yet, legacy disaster recovery solutions such as offsite tape repositories don’t provide the immediate and dependable response needed to meet today’s business demands.

It is no surprise then that the latest trend in disaster recovery is Disaster Recovery as a Service (DRaaS). Relying on the cloud to provide flexible, scalable backup resources, DRaaS is always on and always available. Disaster recovery services provide the fastest options for restoration of operational and other kinds of data, and it can automate many of the tasks. Along with the agility and speed of recovery that DRaaS makes possible, it also provides increased flexibility, improved security and saves you money. Having access to your backup data without having the access to compute to run your business is only part of the equation in a disaster.

In traditional disaster recovery, IT maintains or has access to a second, standalone data center for the disaster recovery operations. This duplication includes storage and compute resources as well as duplicate network resources such as firewalls, routers and switches. There are also extra operational processes such as configuration, maintenance and support. In addition, there is the time needed to access the equipment at the second site as well as the time needed to re-route network traffic to this new location.

The manual side of disaster recovery can be the Achilles heel for many businesses because their backup operations are manual. This puts the burden on data center employees, who unless the business is very big, are often caught up in other day-to-day operational tasks. It is not always easy to ensure backup tasks remain on the daily to-do list despite more pressing short-term issues.

Rapidly growing businesses also need to expand their redundant data center to match the growth of the business. This can impose the need for significant expenditures at a time when all available Capex is being used to increase productive capacity. As with manual operations, long-term strategic issues such as disaster recovery often fall lower on the priority list when the business is consumed with short-term issues.

 

Cost-Effective and Reliable Disaster Recovery Services for Businesses of all Sizes

Disaster recovery services address most of these shortcomings. The pay-as-you-go approach of cloud services is one of the principal drivers of the trend to the cloud, and it is no different with DRaaS. It moves disaster recovery to the expense side of the ledger where it can more closely match the ebbs and flows in revenue, and it ensures that precious capital resources are available for expanding productivity to meet growing demand.

Disaster recovery services can automate the tasks associated with replication, backup and restoration. The cloud provider takes over the day-to-day operations, administration and maintenance of the DR datacenter and associated services, which frees IT to focus on the more pressing concerns of managing the fast-growing digital operations side of the business.

In addition, disaster recovery services can also assist in disaster avoidance. Failing over just one or a few Virtual Machines (VM) and running those workloads from a Cloud site without having to formally declare a disaster and initiate all of the associated actions with disaster declaration can be invaluable.

Documenting and automating the restoration process or “run book” of Virtual Machines (VM) with your DRaaS provider through the use of features such as Failover Plans can ensure that the appropriate steps are taken more rapidly and without having to make those decisions during the disaster declaration process, since they were determined well in advance.

The DRaaS provider also brings their expertise and experience handling disaster recovery and prevention on a daily basis; whereas most business’s IT departments will only occasionally deal with data restoration tasks and may never experience a full-blown loss of data — at least, not until it happens.

Your DRaaS provider can work with you to develop your Disaster Recovery Plan. They can help you to assess the risks and business impacts, lay out the best ways to prevent data loss from occurring, and help your IT staff to prepare for how best to respond and recover from various disaster scenarios. Finally, they can help you to test these systems on a regular basis to ensure that the plan is comprehensive and update it when new threats emerge.

This last point is perhaps the most significant. Cyber-security threats are the area most prone to rapid change, and the area where it is most difficult for IT departments to stay current. Again, the DRaaS provider is singularly focused on the security of their data center operations and is completely attuned to the current state of security threats. Their infrastructure is also separate and apart for that of the businesses they serve which offers additional protections through these barriers. Read our Ransomware Best Practices eBook for our insights on how to protect your business.

In this era of digital transformation, the cloud is playing a key role in the development of information and operational technologies. It allows businesses to be more agile, responding quickly to shifts in demand and enabling them to be more flexible and adjust their offerings and services to optimize the customer experience. Cloud providers offer the latest capabilities and leverage the most advanced technological platforms. Every business today needs to put cloud at the heart of their business strategy and, now more than ever, that includes disaster recovery services.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around DRaaS Veeam managed appliance for VMWare and HyperVDRaaS physical server replication, and other Storagepipe DR services that can help you to meet your operational demands while protecting and recovering your most valuable asset – your data.

Word, Microsoft Office, Microsoft 365, Office 365, Office 365 Backup, Office 365 Cloud Backup, Cloud Backup, Microsoft Backup, Microsoft Office 365 Cloud Backup, SaaS Cloud Backup, SaaS Backup, Storagepipe, Veeam, Veeam Cloud Connect, Cloud Connect

SaaS applications such as Office 365 are part of what is allowing the global shift towards remote working. Having everything in the cloud means that employees enjoy much greater flexibility about where and when they work, and organizations can reduce their real estate footprint. However, using cloud-based services does not mean that IT can forget about data backup and disaster recovery. While there are lots of good reasons to enable remote work in your organization, cloud services don’t end the need for complete data protection, wherever your employees are located.

Microsoft Office has long been the preferred communications, collaboration and productivity application suite for organizations. So, when Microsoft shifted Office to the cloud with Office 365, it was a strong signal to organizations that SaaS was here to stay. All of which was good news to IT departments that are weary of the time and money spent on supporting the old on-premises model.

Now, with automatic updates, employees always have the latest version of the software and can collaborate seamlessly on documents. When integrated with Microsoft’s other powerful cloud platforms like Exchange, SharePoint, OneDrive and Teams, any size organization can have the full benefit of this powerful platform for communicating, sharing, and creating information to help drive their business.

Whether employees are working in the office, remotely or while on the move, they can utilize the Microsoft SaaS suite of applications thanks to support for operating systems ranging from Windows to Mac OS and Linux, including IOS and Android tablets and other mobile devices. With all of their data in the cloud, employees can move from device to device with complete confidence that the latest version of their documents and files are available to work on from anywhere, via any device.

As easy as this all sounds, there are still a bunch of requirements and policies that IT departments need to consider when implementing remote workers and Office 365.

BYOD Security Policies

Employees love the freedom that Office 365 gives them to use their own devices. While it may still be best practice for employees to use only business-supplied equipment, for many organizations, BYOD is here to stay. Thus, it is important to set up the right policies for remote workers. For instance, not sharing work devices with family members or, if that’s not possible, ensuring a separate password-protected account for the remote worker on the family machine.

 

Collaboration and Communication Policies

If the remote employee is using equipment provided by the business, the policy should be to disallow any sharing or personal computer use on the office-supplied laptop — or, at the very least, personal email and social media communications must have a separate account on the device. Email best practices are the same for all employees, and they should be well trained to spot phishing attacks. Documents of importance to the organization should be worked on in SharePoint with proper version control and access controls implemented.

 

Configuration and Remote Access

Remote updating of laptop configurations is not so different for remote and office workers if remote desktop software is installed. OS updates have to be scheduled with the employee but are easily managed with an internet-facing WSUS server. Management of Office 365 licenses is also similar. Don’t forget that with more workers accessing internal servers remotely, you have to have enough certificates on hand to support NSA multi-factor authentication for those times when remote working volume spikes.

 

Office 365 Cloud Backup and Disaster Recovery

Finally, the need for regular data backup and disaster recovery planning does not go away just because the data is in Microsoft’s cloud. It is true that with cloud services, hard drive failures and lost laptops do not pose the same level of concern regarding data loss as they once did. But these are by no means the only ways to lose precious data.

The most common cause of data loss is user errors. Unfortunately, businesses often learn the hard way that many SaaS applications, including Office 365, lack comprehensive support to remedy these issues. In fact, many SaaS providers specifically exclude covering user error issues in their terms and conditions. Users can overwrite files by mistake, accounts get deleted, folders disappear, and malicious emails are opened. In addition to the applications themselves, you need to have a comprehensive data backup and disaster recovery policy, and workstation backup services that allow you to recover to previous versions of a file, folder, or even an account.

There are other serious considerations around archiving and searching records. If you delete a user license when an employee leaves, Microsoft Office 365 will only keep a backup of an employee’s email, contacts and calendar for 30 days. OneDrive files are kept for longer, but not forever. Thus, when employees leave the organization, it is critical to have a full backup of their files and protection of historical email in case you need them later to maintain continuity with suppliers or customers. You may also need those long-term backups and archives because of legal actions and compliance with audit regulations such as GDPR, PIPEDA, and HIPPA, which require businesses to maintain intact records for multiple years.

On the disaster recovery front, remote worker’s devices are more vulnerable to loss, damage and theft because of the public nature of the places they may work and their frequent mobility. They are just as exposed as any other part of the business to ransomware attacks, which are on the rise. Office 365 and other Microsoft services are often a primary target of such attacks.

Thus, it is crucial to maintain endpoint security for remote devices, managing the remote user’s anti-virus and spam protection. Given the vulnerabilities associated with Wi-Fi, especially public Wi-Fi services, employees should use a VPN to access the enterprise intranet, as well as for connections to cloud-based applications like Office 365. Despite the higher risks that are associated with remote work, a comprehensive offsite or cloud data backup service is your ultimate backstop should they experience difficulties.

The need for these precautions shouldn’t outweigh the advantages of remote work, and there are ways to avoid the extra overhead associated with managing your remote workforce. Look for a partner who can help you get the most out of the Microsoft productivity platform with cloud-based data backup and disaster recovery, as well as management of Office 365 licenses, user account management, end-point security, training and set-up assistance.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to discover your options around Office 365 Cloud to Cloud Backup services, and about other Storagepipe services that can help you to meet your operational demands while protecting and recovering your most valuable asset – your data.

remote workforce, remote work, remote workers, remote employees, work from home, WFH, remote desktop, remote desktops, remote workstation, remote workstations, workstation backup, workstation cloud backup, DRaaS, Disaster Recovery, Disaster Recovery Services, Disaster Recovery as a Service, Backup as a Service, Backup Services, Office 365 Backup, Office 365 Cloud Backup, Veeam, Veeam V10, Storagepipe

Working remotely, whether from home, the local coffee shop or a co-working space is a big trend. As a result, many enterprises are converting their office spaces and even getting rid of providing a fixed desk per employee. Having this kind of workspace flexibility and freedom in how to structure their workday is a priority for many modern workers, especially for Millennials and Gen Z. This shift in strategy may be critical for attracting and retaining talent into the future.

In the past, it was often only the largest enterprises that could afford to put the systems in place to make flex-time, work from home options, or entirely remote workforces possible. For many small to medium enterprises, the logistics associated with remote access servers, VPNs, token systems for authentication, backing up home workers’ data, and implementing disaster recovery simply made remote working too costly. This has all changed in the cloud era, which is now allowing enterprises of almost any size to cost-effectively support part-time or full-time remote workers with the right resources.

For IT managers needing to set up cloud services for remote workers, there are a number of things to consider. These include services for hosting, security, backups and disaster recovery. Additionally, there are HR policies that need to change, extended employee training, new equipment and software licenses, and configuration of network access and permissions for these more mobile employees.

On the hosting front, the cloud solves one of the biggest issues — scaling. As employees become more mobile and move in and out of the office, the need for remote access infrastructure can become quite unpredictable. For instance, if a snowstorm closes schools, most of your staff may suddenly want to work from home. Fortunately, the cloud’s ability to scale on demand means that you can accommodate them.

Managed Cloud Services are based on multi-tenant virtual machines running environments such as VMWare, Hyper-V, and Nutanix. Because virtual machines can be spun up at a moment’s notice, you should have on-demand access to these resources with no practical limits. They are perfect environments for supporting business operations that are unpredictable such as remote work.

You may also want the option to use cloud infrastructure for more sensitive and predictable operations. The option may also be available to co-locate some of your own compute and storage hardware in the same facility alongside cloud infrastructure to create a hybrid cloud setup for added flexibility and security. Ideally, the two services can be bundled together in a single cost-effective offer.

On the most basic level, you will need your cloud supplier to provide the networking and data infrastructure to support remote workers. This includes remote access servers, data storage and operating software. This is known as Infrastructure as a Service (IaaS). Your remote workers will need fully redundant private networking with direct, secure connectivity including VPNs and firewalls. If your operations are widely distributed, the cloud provider should be able to offer you multiple certified datacenter options along with clear service level agreements (SLAs).

One of the most challenging aspects of working from home is ensuring that data backups are running regularly and are error-free. Unlike the in-office desktop PC, home PCs and laptops are not connected to the LAN 24/7; this can make running and managing backups difficult. Fortunately, cloud-based backup services are always connected to the user’s machine. Thus, it is possible to run continuous or scheduled backups of the contents of the remote machine throughout the day. A good backup service should also offer an internal backup system for the machine as well.

SaaS applications, like Salesforce, Microsoft 365 or G Suite help to ensure that remote workers are keeping their data in the cloud, but these SaaS services also need to be included in the backup service landscape. Most SaaS providers do backup their servers, but these backups are often limited in scope and have few recovery points to restore from. Many SaaS providers won’t take responsibility for partially or fully restoring your data, especially in the common scenario where user error has caused a failure, corruption, or breach.

Without strict enforcement and training, many end users tend to save their files on their PCs in local folders like “My Documents” rather than on company servers. These machines are often turned off during normal backup windows which complicates data protection. To prevent data loss, IT managers should search for a workstation backup solution that offers resume and cache functionalities, along with the ability to back up locally saved workstation data.

With remote work, risks around email phishing and other security concerns increase. Thus, it is critical to have continuous backups of user data so that it is possible to restore previous versions of files and rollback user error or outside threats such as ransomware or crypto-type attacks.

Finally, it is critical to have a disaster recovery service (DRaaS). There are, after all, worse things than snow days. Flooding, fire, disgruntled employees and outside cyberattacks can shut down your business, sometimes costing you days and weeks to recover. As businesses and organizations pursue their digital transformation, the stakes are only mounting.

Remote workers and their data have to be included in the recovery plan. The disaster may be something that occurs in their home or co-working space and yet not affect any of your offices. To complicate matters, if you have a BYOD policy, they may be working off of their own machines. You will have to quickly replace non-standard laptops, tablets or other devices and restore their data.

DRaaS providers can not only protect your data assets; they can also provide an entire disaster recovery service. Your IT department will obviously want to take the lead on recovery efforts, but they probably won’t have a lot of experience doing it and might also be feeling the pressure.

A DRaaS provider should be able to help. After all, it is their day-to-day business to help businesses and organizations of all kinds and sizes to recover from these kinds of events. They should consult with you beforehand to put a disaster recovery process in place, and they can help save you many hours and days by guiding the IT team in the right direction when you need to recover.

Working remotely is becoming increasingly popular and for younger generations of workers, it is often viewed as essential. The good news is that supporting these new, more flexible work patterns is much easier and cost-effective with the cloud and managed services. This is not only making the workplace more flexible and attractive, it also enables you to on-board workers faster, accommodate partners and suppliers that are collaborating with you and, generally, make your business or organization more agile — as well as safe and secure.

Storagepipe to the Rescue

Your Backup and Disaster Recovery Heroes

Storagepipe is a trusted global provider of comprehensive cloud, data protection and security services.

Since 2001, Storagepipe has provided these robust and secure managed cloud and disaster recovery solutions from a scalable multi-tenant infrastructure, supported by our first-class in-house technical team. Storagepipe delivers highly flexible and responsive solutions with outstanding value and service, using state-of-the-art technology to offer ultimate protection and peace of mind.

We are driven to be your trusted partner and to ensure that we deliver a Storagepipe Experience that meets your business requirements with the reliability, scalability and support that your business demands.

Contact us today to learn more about how Storagepipe can help you to meet your operational demands while protecting and recovering your most valuable asset – your data.