Does Azure backup support or provide ransomeware protection

Paul McGrail 0 Reputation points
2023-03-09T18:02:20.7733333+00:00

Does Azure backup support or provide ransomeware protection

Azure Backup
Azure Backup
An Azure backup service that provides built-in management at scale.
1,132 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 41,921 Reputation points
    2023-03-09T18:19:07.4666667+00:00

    @Paul McGrail backups stored in Azure are isolated from the frontend access. So if you store your data in Recovery vault it is already behind the scene of applications and users so direct access is not possible.

    Steps I would suggest is RBAC role implementation, enable Soft delete for recovery purpose, Encryption is enabled, user/admin access is reviewed periodically .

    Also I will suggest you to view this detailed overview and protection video from Microsoft for Azure Backup - https://www.youtube.com/watch?v=VhLOr2_1MCg

    Hope this helps.

    JS

    ==

    Please Accept the answer if the information helped you. This will help us and others in the community as well.

    0 comments
  2. SadiqhAhmed-MSFT 38,081 Reputation points Microsoft Employee
    2023-03-13T18:04:42.2833333+00:00

    Hi @Paul McGrail Thank you for reaching out to us on Microsoft Q&A platform. Happy to answer your questions!

    Azure Backup provides security to your backup environment, both when your data is in transit and at rest. With Azure Backup, you can back up:

    • On-premises files, folders, and system state
    • Entire Windows/Linux VMs
    • Azure Managed Disks
    • Azure file shares to a storage account
    • SQL Server databases running on Azure VMs

    The backup data is stored in Azure storage and the guest or attacker has no direct access to backup storage or its contents. With virtual machine backup, the backup snapshot creation and storage is done by Azure fabric where the guest or attacker has no involvement other than quiescing the workload for application consistent backups. With SQL and SAP HANA, the backup extension gets temporary access to write to specific blobs. In this way, even in a compromised environment, existing backups can't be tampered with or deleted by the attacker.

    Azure Backup provides built-in monitoring and alerting capabilities to view and configure actions for events related to Azure Backup. Backup Reports serve as a one-stop destination for tracking usage, auditing of backups and restores, and identifying key trends at different levels of granularity. Using Azure Backup's monitoring and reporting tools can alert you to any unauthorized, suspicious, or malicious activity as soon as they occur.

    Checks have been added to make sure only valid users can perform various operations. These include adding an extra layer of authentication. As part of adding an extra layer of authentication for critical operations, you're prompted to enter a security PIN before modifying online backups.

    Learn more about the security features built into Azure Backup.

    Also, refer to the following link - https://learn.microsoft.com/en-us/azure/backup/protect-backups-from-ransomware-faq to know more about Azure Backup and Ransomware

    Hope this helps. Feel free to reply if you have any questions.

    If the response helped, do "Accept Answer" and up-vote it

    0 comments