Blog Archives

NotPetya: Yet Another Ransomware Outbreak

The WannaCry ransomware virus has become a distant memory for many. For some WannaCry and its variants came and went without doing damage. Others weren’t so lucky. What we are learning (once again) is how critical it is to be prepared against a ransomware outbreak. The fact that the ransomware threat is ongoing and not leaving the scene of the cybercrime anytime soon is underscored by the latest malware to hit the unprotected computer environment and make headlines: NotPetya.

The NotPetya ransomware breakout appears to have started in Eastern Europe and is spreading west. From what we know at this time, a Ukrainian accounting software application is the suspected source; NotPetya was apparently hidden in a software update. As you might expect, NotPetya was named after the Petya ransomware because it masquerades as that ransomware.

What about that ransom?

The NotPetya ransom payment mechanism has been disabled; that is, the email ID associated with cybercriminal’s Bitcoin account was blocked by the email ID’s provider, according to a source. In other words, there is no way to pay even if you want to. At this point of the outbreak, the purpose of this malicious virus is to attack systems quickly and cause as much damage as possible.

NotPetya is considered more dangerous than the WannaCry virus, which was so devastating because it paralyzed infected computers and then caused application failures for systems that had a dependency on Windows operating systems. Hundreds of victims paid various amounts of ransom in Bitcoin in exchange for a decryption key. If there was anything good about WannaCry, it was that it warned IT admins and others to keep their Windows operating systems up to date with the latest patches.

So, what’s the point?

It’s important to remember that cybercriminals who seek to infect systems with ransomware or spread any other form of malware are criminals; cybercriminals to be sure, but criminals just the same who might have no other purpose than to simply cause damage. In the case of NotPetya, this ransomware spreads more effectively than WannaCry and not only encrypts data but also extracts credentials to other machines and systems.

Similar to the WannaCry virus, the purpose of NotPetya is to infect Windows 10 computers. Fortunately, the Windows 10 Credential Guard spots NotPetya’s password extraction from memory. Ransomware running in the Windows 10 operating system with administrative privileges cannot extract credentials. Read more about Windows 10 Credential Guard.

Mozy can help you defend against ransomware

Mozy by Dell can help you protect your environment from the NotPetya ransomware. Here’s how:

   •     Immutable copy: Mozy uses a proprietary encryption and encoding mechanisms to store backups which prevents any          execution of code within files that have been backed up. Mozy backups are entirely separate from your computer.
   •     Point-in-time backup and restore: Mozy uses file versioning, allowing the end user or administrator to restore the entire          backed up data set or individual files and folders from any point in time; up to seven years for MozyPro and          MozyEnterprise, and 90 days for MozyHome. This allows you to easily go back to a healthy version of your files.
   •     Automatic backups: Mozy provides automatic backup as frequent as every two hours, providing highly granular point in          time backup to recover from.
   •     Self-service restore: Mozy provides the ability to the end user to perform their own restore from the Mozy agent or the          Web Access interface.

Avoid a ransomware disaster

To learn how you can use Mozy as a second line of defense for your data and to prevent a ransomware disaster, visit Mozy by Dell.

Other Mozy blogs about ransomware

For more information about ransomware and what you can do to increase your defenses:

   •     Educate your users and yourself
   •     Take a multi-layered approach to protection
   •     WannaCry? You will if you don’t back up

Mozy Employee Receives Deloitte UCC Executive Graduate of the Year Award

It’s always good to hear about team members who have achieved something beyond the ordinary.

Recently, Kris Meulemans, a Mozy senior sales engineer based in Cork, Ireland, and servicing our EMEA customers, received an MBA from the University College Cork and was presented with the Deloitte UCC Executive Graduate of the Year award for finishing at the top of the class.

From left to right: Thomas Healy, Mozy Business Operations Director, Dell EMC; Honor Moore, Partner, Deloitte; Kris Meulemans, award recipient and Mozy Senior Sales Engineer, Dell EMC; Patrick O’Shea, President, University College Cork; and Joan Buckley, Academic Director UCC Executive MBA. Photo by Tomas Tyner, UCC.

The Deloitte UCC Executive Graduate of the Year award is presented to the outstanding student of each graduating class to acknowledge their academic achievement and overall contribution to the MBA program. This is the first instance of a Dell EMC employee receiving this prestigious award.

As part of the celebrations, Kris, his partner Katelijne, and Thomas Healy, a representative from the Dell EMC management team, met with UCC’s president, Professor Patrick O’Shea; Honor Moore, partner at Deloitte; and Joan Buckley, the academic director 2015/2016 of the Executive MBA.

Presenting the award, Moore said, “Deloitte is honored to be associated with this prize, which recognizes excellence in business leadership education.” She complimented Kris’ achievement on getting the highest marks in the class.

Dr. Buckley congratulated Kris for his academic achievements and overall contribution to the class. “With this prize we recognize an executive who has shown exceptional ability,” she said.

Asked about his experience working toward his MBA, Kris said, “The MBA taught me the frameworks and tools to tackle very diverse and complex situations and have proved immediately applicable within my role. But equally, if not more important, the MBA continually challenges you to think on a higher level and broaden your horizon through the interaction with a wonderful team of lecturers and co-students. And perhaps the most important, it makes you realize the value of your family and friends as a support network, without which this achievement wouldn’t have been possible.”

The senior sales engineer role includes consulting with customers on their SaaS strategy together with the sales team, interfacing with Product Management and Engineering functions on the future products as well as training new Sales and Pre-Sales team members. When asked about Kris’ accomplishments, Steven Wood, Mozy’s senior Pre-Sales manager, said, “Kris has an insightful appreciation of customer needs and the challenges they face with modern IT and cloud computing. His attention to detail and dedication to every goal is exemplified by this award.”

Congratulations, Kris, from all of us on the Mozy by Dell team!

Kris is one of the many professionals working at Mozy—and working for you!—to make Mozy online backup the most trusted name in cloud data protection.

Is Your Data Protected?

Did you hear about the company that was fined $2.5 million by the feds as a result of a HIPAA breach penalty? A laptop with protected health information for approximately 1,400 patients was stolen. Unfortunately, the computer was not protected with the safeguards required by the Health Insurance Portability and Accountability Act (HIPAA). As a result, electronic protected health information (ePHI) was compromised.

Although threats to business data are everywhere—think ransomware, hard drive failure, theft, user error, and more—you can prevent data loss (and avoid fines for non-compliance!) by backing up your data and ensuring that your backups are occurring on a regular basis.

First, let’s consider some of the threats. Next, let’s briefly discuss how Mozy can help you prevent a data disaster.

What could possibly go wrong?

If any of the following questions cause you want to change the subject or you’re just not sure of a proper course of action, be sure to read the next section!

   •     What would you do if your laptop were stolen? Do you have a process in place that allows you to recover your data?
   •     What would you do if your hard drive failed and you could no longer access the data on your computer?
   •     What would you do if you spilled coffee on your laptop and it suddenly died as a result?
   •     What would you do if you logged on to your desktop and saw a ransomware message indicating that your files were          locked and demanding a bitcoin ransom in return for a decryption key to allow you to regain access to your data?
   •     Do you handle ePHI, and do you know if that information is in compliance with the HIPAA Security Rule?


Prevent a data disaster

I just didn’t expect that
Maybe your laptop was stolen during a business trip, or maybe you forgot you placed it on the roof of your car while searching for your keys and then drove off. Maybe you liquidated your laptop with a large latte. Or maybe your hard drive just failed. With the Mozy backup service you can use Mozy’s restore manager to download all of your files (to your new computer!) from the safety of the Mozy cloud.

“Your personal files are encrypted! Pay!”

The last thing anyone wants to see on their computer screen is a message like, “Your personal files are encrypted! Pay!” In the event that your computer is infected by ransomware, Mozy offers a second line of defense. Mozy ensures that backups are frequent and reliable, so in the event of a ransomware attack, you can recover data to a point in time prior to the attack.

ePHI and HIPAA

If your business handles ePHI, you have a legal obligation to keep that information confidential and protected from those not authorized to view it. Mozy safeguards ePHI with strong encryption (which includes a required encryption key); your data is encrypted during backup and at rest. Your corporate encryption key or personal encryption key is known only by you.

We’ve got your back (up)

Using enterprise-grade encryption, Mozy protects the data you rely on to keep your business up and running and allows you to recover lost, damaged, or stolen data quickly. (A note about ransomware: It’s important to remember that simple backup is not enough to ensure your files are protected from ransomware. Mozy keeps up to one year of file versions. If you have identified the point of infection and the time the malware was introduced to the computer, Mozy can restore all of the files for the given user from the point in time just before the malware was introduced.)

For more information, visit Mozy by Dell.

Without cloud backup, customer would have experienced a data disaster

Our job is to back up and protect your data. But that’s not the whole story. We strive to provide the best customer support and do all within our power to ensure that our customers have the absolute best experience with Mozy as possible. And in some ways, the best experience you can have is to forget that we’re backing up your data. After all, Mozy backup is automatic. No-worry, hassle-free backups that you schedule based on your needs.

Of course, we’re always pleased to hear from our customers, whether it’s to tell us why they love using Mozy by Dell, or even to let us know how we can improve their experience with our software and service.

Recently we received the following unsolicited email from one of our customers. We’re sharing it because (1) we’re proud of what we do for our customers, and (2) we’re both humbled and delighted when Mozy can save the day by helping a customer avoid a data disaster.

“Within the past few months, we have had a couple of emergencies that necessitated a restore of files that were located on our company’s main storage server. One of these emergencies was a ransomware virus that, had we not had automatic, off-site backup, would have resulted in disaster. The customer service representatives at Mozy worked with me throughout the restore process, and even after, to make certain that the needed files were never truly in any danger. They made sure that the Mozy backup software was set up just right going forward to see to it that we would be up and running in no time should a similar emergency occur again. I cannot recommend Mozy software, or its employees, highly enough.” 
—Jeff Garfinkel, Reliant Health Care Services

Thanks, Jeff, for your email. We are pleased to have you as a Mozy customer!

Jeff is one of our many customers and one of many we’ve heard from since our humble beginnings. We’ve been backing up our customers’ data since 2005. Today we back up and protect mission-critical data for more than 6 million users. We also back up more than 100,000 businesses and 1,000 enterprise customers.

Check out what our customers say about us in these Mozy testimonials.

To each of our customers, thank you for using Mozy by Dell!

Handle healthcare data? It’s hip to know HIPAA!

If your business handles personal health information—such as patient records—you know that such information needs to be protected; you have a responsibility to keep it confidential and protected from those not authorized to view it. That confidentiality applies not only to personal health information that’s saved on a desktop or server that’s on premises, it also extends to the cloud.

The cloud has become the de facto standard for storing healthcare records, in large part because it’s efficient and economical. In short, it makes good financial and IT sense to store healthcare records in the cloud.

As businesses migrate their healthcare records to the cloud, that data must comply with the Health Insurance Portability and Accountability Act (or HIPAA, as it is more commonly referred to) regulations. HIPAA established, among other requirements, a set of national standards for storing and handling electronic personal health information.

To be sure, HIPAA compliance is complicated; even so, it’s the law and must be followed. As a provider of HIPAA-compliant backup services that safeguard health information, Mozy ensures that health information is protected in a way that complies with HIPAA regulations. The Mozy software and services ensure that appropriate safeguards are in place so that the businesses that back up health information have the tools to keep it confidential and secure.

Mozy’s commitment to you and your data is simple and based on these principles:
   •     Your information is your information, not our information.
   •     We never sell your information to anyone, nor do we sell information about you.
   •     We never sift through your information in order to create a profile of you or target advertising.
   •     You can always get your information back while your account is active. We have no rights to your information if you leave           the Mozy service.

And your data is always safeguarded, whether in route to or from the cloud or at rest, with Mozy’s enterprise grade encryption.

Next week the Mozy blog will begin a four-part series about HIPAA—what it is, why it’s important, and what you need to do to be in compliance. Look for these blogs in the next couple of weeks:
   •     What is HIPAA compliance?
   •     Cloud Computing and Healthcare: Understanding the HIPAA Omnibus Rule
   •     Put a Stop to the Key Data Breach Culprits
   •     The Healthcare Cloud for Data Breach Prevention and HIPAA Compliance

Until then, check out how Mozy helps you comply with HIPAA security.

World Backup Day

Today is World Backup Day. Of course, that doesn’t mean it’s only important to back up your data today. World Backup Day is a reminder that you need to be backing up your important data (and since you took the time to create it, it’s all important data!) every day.

If you’re not already backing up, consider Mozy by Dell, the most trusted name in cloud data protection. Mozy enables “data completeness” for enterprises, small and medium-sized businesses, and consumers. What do we mean by data completeness? Cloud-based service plans that include award-winning backup, personal file sync, and mobile access. It also means peace of mind that your information is securely and privately protected from disaster, including lost or stolen laptops, hard drive failure, user error, or malware—including ransomware—and always available to you.

Thanks to our friends at Clutch for creating today’s infographic.

You Can Successfully Combat Ransomware

What do you know about ransomware?

You probably know that ransomware is a form of malware that can block access to a computer system. Only after the ransom is paid—usually in the form of Bitcoin—is a decryption key handed over to the victim, at which point the victim can theoretically unlock and access his files (though there is no guarantee that this will always be the case; after all, we are dealing with criminals).

Would you like to know more?

Ransomware is prevalent. There are literally hundreds of millions of ransomware variants. Ransomware is also extremely successful (for criminals!); estimates put the cost to businesses and individuals at $1 billion in 2016. The growing sophistication of malware in general and ransomware in particular means that no cybersecurity plan should be thought of as foolproof or a guarantee that data is safe and untouchable by cybercriminals. The odds are high that if your business has not yet experienced a ransomware attack it will—and sooner rather than later.

Because ransomware is so wide spread and profitable, businesses must do all within their power to protect their data in order to avoid a ransomware disaster, which cannot only cripple a business, but even put it out of business should decryption fail and mission-critical data be lost forever.

What can be done?

As part of a business continuity plan, the FBI recommends protecting your organization from cyberattacks—including ransomware—by being proactive in following these three steps:

  1. Back up data regularly.
  2. Verify the integrity of those backups regularly.
  3. Secure your backups.

That’s where the cloud plays an important role in protecting your organization from a ransomware disaster. Where ransomware is involved, restoration of an endpoint or server from a backup works best when you can easily select a moment in time from where to restore. Mozy by Dell keeps up to one year of file versions, meaning if you have identified the point of infection and the time the malware was introduced to the machine, Mozy can restore all of the files for the given user from the point in time just before the malware was introduced.

We’re here for you

We here at Mozy are serious about protecting your data and educating businesses of all sizes about threats to data. We’re putting the screws to ransomware! We know malware isn’t going away; however, we also know that there are tried and true methods to prevent a ransomware disaster that you can include in your business continuity plan.

To help you understand more about this form of malware and, more importantly, to help you know what you can do to protect your data, we’ve created a four-part blog series about ransomware. The first in our series will be published next week. (Update: Parts 1, 2, 3, and 4 have now been published.)

The more you know about ransomware and other threats to your business-critical data, the more you will understand that you don’t have to be a victim. With the right tools and preventive measures in place (including Mozy cloud backup), you can successfully combat ransomware as this consultant does on a daily basis.

In the meantime, be sure to check out these important assets about protecting your business against ransomware:

   •     Ransomware: Frequently Asked Questions

   •     Preventing a Ransomware Disaster

Billy from IT has been put out to pasture

We want to call your attention to a lighthearted Mozy video we’ve just released.

In the video we catch a look at what the preliminary stage of a ransomware disaster might look like. Surprise and embarrassment are just the beginning. But that’s not the worst! Downtime, lost revenue, and lost customers are just some of the probable outcomes of a ransomware disaster. If Billy had only backed up the company’s files with Mozy, a quick restore to a point in time prior to the ransomware infection would have saved the day. Bill would be a hero!

Watch video

These days, businesses and home users are faced with two key problems: (1) keeping critical data secure and private, and (2) having it available to them anytime, anyplace. Mozy by Dell solves these problems by enabling businesses and individuals to protect, access, and keep their important files up to date across their computers, servers, and mobile devices.

And Mozy includes file sync. Mozy Sync lets users easily synchronize and securely access their files across devices. Files stored in the Sync folder are automatically updated in real time across users’ various devices, including laptops, tablets, and smartphones. Sync gives you the flexibility to work securely from any device and from any location while maintaining compliance with your organization’s information access policy.

Sync users can also maximize convenient file access by using the free Mozy mobile app for iOS and Android devices. The Mozy app allows you to access your Sync folder while on the go. You can also upload email attachments and documents from other apps to your Sync folder; those files automatically sync across all of your devices.

The lesson is clear: Be sure you’re backing up your important files with Mozy by Dell. It’s complete data protection. It’s peace of mind.

Mozy’s Most Popular Blog Posts and Infographics from 2016

As the year comes to a close, we thought it would be fun to revisit what was most popular on the Mozy blog in 2016. Check out which blog posts and infographics our readers liked most from what we published this year.

When Old Tech Becomes New Tech

We are a society that loves technology. Most of us can’t seem to get enough of the latest and greatest. The rapid advance in technology is causing a glut in tech devices such as computers, smartphones and game systems. That means outdated tech devices are ending up in the landfill. Unfortunately, a lot of that e-waste could have been recycled. Read more. (Also, be sure to check out our infographic about e-waste.)

10 Great But Inaccurate Quotes From Technology (infographic)

We’ve all said something at one time or another that we regret saying. Even the brightest minds have said things they wish they hadn’t said. That’s especially true when the statement was bold and sure…except that it never came to pass. Check out these great but inaccurate quotes from brilliant technologists from the 20th and 21st centuries. View infographic.

Dell + Mozy Have a Lot in Common with Greatness!

How could you have missed the news about the greatest tech deal of this century—perhaps of any century? The merger of Dell and EMC—owner of Mozy—brought together two tech giants. It was the best joining the best. As our writer described it, it’s like Batman and Robin. Han and Chewy. Milk and cookies (preferably chocolate chip). You just can’t have one without the other. Read more.

Most Prolific Hackers (infographic)

Make no mistake about it: 2016 was one of the biggest years for hackers. Ransomware in particular was rampant (2+ billion files were leaked this year). This infographic describes some of the most infamous hacks from years past. Some of these unsavory characters may look harmless, but their unauthorized access to information caused serious headaches for consumers, government agencies and businesses. View infographic.

Make Digital Backups of Your Precious Family Photos

Photos bring back so many wonderful memories from the past. The truth is, some of our best moments in our personal history are captured through photography. And today’s smartphones make it so easy to capture those moments. Are you backing them up and protecting them? You should be because you’re capturing moments for future generations to enjoy. Read more.

50 Things We Don’t Do Anymore Due to Technology (infographic)

Unlike everything else in our list of posts and infographics published in 2016, this infographic was published three years ago but continues to be one of our most popular. We thought it would be fun to once again consider many of the things we no longer do anymore because of technological advancements. By the way, when was the last time you called the theatre to get movie times? View infographic.

We hope you’ve enjoyed our revisit to our most popular blog posts and infographics. We also hope that you have a wonderful holiday and a very happy New Year. Thank you for backing up with Mozy! We appreciate your business.

Don’t Fear Ransomware!

Did you hear about the Bay Area light-rail system that was hit by ransomware a couple of weeks ago? You can read about it on The Core, Mozy’s parent company’s blog.

Some ransomware facts

Although it’s true that ransomware sounds scary, you shouldn’t fear it. There are a few things we know about this type of malware. Ransomware:
   •     Is prevalent (there were more than 431 million malware          variants added in 2015)
   •     Continues to grow more sophisticated (some ransomware          uses unbreakable encryption)
   •     Usually gains access through a network’s weakest link (for          example, a user’s email or social networking site)
   •     Has cost businesses millions of dollars this year (US$209          million just in Q1 2016)

Knowing these facts helps us to understand the very real nature of the threat of ransomware to today’s businesses.

It can’t happen to my business…right?

According to the Global Data Protection Index (GDPI), data protection—which includes data backup—is critical for a number of reasons. Of the organizations surveyed by the GDPI:
   •     52% suffered unplanned system downtime in the last 12 months
   •     29% suffered data loss
   •     36% reported internal or external security breaches (including ransomware)
   •     Hardware failure is still the number one cause of data loss and/or system downtime

Clearly, a ransomware disaster is more common than most people think. It can happen to your business!

Ransomware isn’t going away

As already mentioned, businesses have already forked over more than US$200 million just in the first quarter of this year. According to the FBI, ransomware is on course to become a US$1+ billion industry by the end of 2016. There have been 2+ billion records leaked in 2016 as a result of cybercrimes.

Although ransomware isn’t going away, it’s important to remember this: a ransomware disaster is preventable!

So, what can you do?

Like most criminals, cybercriminals are opportunists who are looking for the easiest targets. One of the best things a business can do is no be an easy target! For starters, be sure you can answer “yes” to the following questions:
   •     Are your employees aware of the risks of unsolicited emails?
   •     Are your firewalls and mail filters always up to date?
   •     Are you using expired antivirus software?
   •     Are you syncing data from endpoints up to cloud-based file sync share systems?

But there’s more to be done in order to prevent a ransomware disaster.

Backup and restore

The most reliable form of protection organizations can leverage to safeguard their data is backup. But simple backup is not enough to ensure that your files are protected from ransomware. It’s important to note that common backup solutions such as a USB drive or network-attached storage device (NAS) are not reliable methods for backing up and safeguarding your data. Ransomware typically spreads throughout an organization’s entire file system, including an attached drive or network share, encrypting both production data and backup data.

It’s also important to note that backup off site (away from your primary site) is critical. Mozy by Dell backs up your important endpoint files and server data to the Dell EMC cloud to ensure that it cannot be compromised by ransomware. When a malware infection is involved, restoration of an endpoint or server from a backup works best when you can easily select a moment in time from where to restore. With Mozy cloud backup, once you have identified the point of infection and the time the malware was introduced to the machine, the Mozy solution lets you restore all of the files for the given user from the point in time just before the malware was introduced.

For more information on how you can prevent a ransomware disaster with endpoint data protection, visit Mozy by Dell.