Storage is becoming a prime target of cybercriminals as they attempt to infiltrate the enterprise, Continuity writes in today’s blog on its website. Faced with perimeter defenses, security safeguards and well-patched operating systems and applications, storage and backup systems are in the fight against ransomware.
According to Gartner, “Most ransomware attacks target unstructured datasets on network shares, making centralized file storage solutions an attractive target for encryption and/or data exfiltration of large amounts of data.”
The storage attack surface is broader and deeper than many CISOs might suspect. It is tempting to think that storage security concerns could simply be resolved by patching clients and making sure there’s a backup solution in place. However, cybercriminals can breach storage systems in several creative ways.
In the 2023 State of Storage & Backup Security Report, the top five security risks were identified:
- Insecure network settings
- Unaddressed CVEs
- Access rights issues (over-exposure)
- Insecure user management and authentication
- Insufficient or incorrect logging and auditing
It’s not just ransomware that’s top of mind for security and storage teams. Auditors and cyber insurance firms are taking a closer look at the security of storage and backup systems, as well as regulatory bodies and industry standards.
Dell Technologies is at the forefront of protecting customers’ evolving environments through its PowerProtect portfolio. Through Dell’s Extended Technologies Complete (ETC) program, Dell customers can add Continuity’s flagship product, StorageGuard, to complement its Dell storage and data protection solutions, helping to keep systems secure and compliant. StorageGuard scans customer environments to ensure they are secure and follows all relevant vendor, industry and regulatory best practices.
StorageGuard enables Dell customers to have complete visibility of all security misconfigurations and vulnerabilities in their storage and data protection environment while hardening these critical systems and guaranteeing compliance with security regulations and industry standards.
In addition to detecting and remediating security risks across Dell’s storage and data protection systems, StorageGuard validates configuration and best practices for Dell
The ETC Program underscores Dell’s commitment to offering customers flexibility and choice with complimentary solutions such as StorageGuard for protecting their critical systems from cyberattacks and insider threats.
StorageGuard improves the ransomware readiness and overall security posture of storage and data protection environments. The solution reduces the effort required by ops teams and admins to develop and enforce security policies, prove compliance for audit, and chase down false positive CVE alerts raised by tools that aren’t storage aware.
