September 07, 2018
When Downtime Strikes, You Need A Disaster Recovery Service That Works
A client calls up after seeing a popup informing them that their data is encrypted, and they need bitcoin to unlock it. You snap into action and turn off the server and workstations to prevent the spread of ransomware. It’s time to revert to the on-site disaster recovery appliance to begin the failover process to a virtualised state for their server infrastructure. It looks like your scheduled backups ran, and the “instant” virtualisation has those changes including the same ransomware infection.
No big deal! We can revert to an earlier recovery point to virtualise.
It’s going to take hours, because the replica always updates to the most recent backup information. Now, you have to create a whole new virtual machine from a virtualised state. What could have taken minutes will take hours, and who knows if those backups have ransomware or not?
Let’s try this scenario again…
Time to use that disaster recovery appliance. As it turns out, the way that the server was backed up was only good to restore files. Now, you have to go back through each and every snapshot and see which one didn’t get locked and run robocopy to sync over the unencrypted files. Too bad the server is 4TB used...this process will take time. To run at full gigabit speed, no one can work at this time, and it will still take roughly a business day. After that, it’s time to work on fixing all the other roles that could have gotten affected by ransomware.
Let’s try one more time…
The Datto SIRIS already notified you to check out the site and verify if data was getting locked with Ransomware Detection (one of the many automatic Advanced Backup Verifications). You choose a snapshot that shows up as clean. It looks like it was the first backup of the day. You virtualise that snapshot in seconds and connect it to the network. After finding and blacklisting this phishing email, you work on sanitising the workstations and getting them back online.
Now it’s time to revert back to production on the original production machine. Backups have been running continuously and incrementally with the virtualised version, so all you have to do is take one last backup, power down, boot the original machine into the Rapid Recovery environment, and pick the latest recovery point to restore to and then reboot.
The company is back to production with minimal downtime, and you are a hero.
So what’s the moral of the story?
Function for a disaster is key, but so is efficiency. Efficiency means you can be up and running in minutes, not hours or days. For businesses, it’s important to partner with a managed service provider who offers solutions that help you get back to production quickly. These solutions will prioritise efficiency by offering automated testing, remote management, and instant restore options for any scenario - without the need to consider how the protected system was backed up.
For managed service providers, it’s crucial to have the options you need in a disaster scenario to recover from any snapshot - instantly - at your fingertips. The simplicity and strength of the Datto SIRIS solution at your end user’s site gives you peace of mind, because when you get a call at 3 AM for a disaster, you know it’s handled.