You may have heard the latest talk around immutable backups and wondering to yourself what they are, how they can help you, and what do you need to implement immutable backups for yourself.
So, what are immutable backups?
Immutable backups are backup files that cannot be changed in any way by any malicious individual. The data files cannot be altered, modified or removed from the backup repository. Immutable backups are slightly different from air-gapped backups as they are not completely separated from the network, but still are unable to be attacked by ransomware if properly secured.
So how can they help your infrastructure?
Immutable backups can provide you guaranteed recovery of critical data from ransomware attacks for up to a certain amount of time. Using products such as Veeam Backup & Replication v11, allows you to configure short-term retention on-premises with immutability to provide quick access to restores.
What do I need in order to enable immutability?
If you are already using Veeam Backup & Replication, you only need a hardened Linux repository. A hardened Linux repository usually contains a server running Linux and disks attached via iSCSI or directly and configured with a special file system called XFS. When setting up the connection between Veeam and the Linux server, you create a one-time password that gets removed by Veeam after the installation.
This simple addition to your backup infrastructure can save you in the event that you are hit with ransomware. RSM has been working with several of our clients as part of any new backup project. If you need an action plan or a complete setup of immutable backups, we can help. Reach out to us today to discuss your options.