All news with #backup security tag

📁 AWS Backup now supports backup and restore for Amazon FSx for Windows File Server, FSx for OpenZFS, and FSx for Lustre in five additional Regions — Malaysia, Taipei, Thailand, Canada West (Calgary), and Mexico (Central). You can centrally manage FSx backup policies, automate schedules, and monitor backup activity through AWS Backup in those Regions. AWS Backup also supports cross‑Region and cross‑account copy of FSx backups across 14 Regions, available for on‑demand copies and scheduled copy rules. In opt‑in Regions, backups can be placed in logically air‑gapped vaults to help defend against accidental deletion and ransomware.

🔁 Amazon S3 Lifecycle now prevents expiration and transition actions on objects that failed replication, helping operators avoid unintended deletions or storage-class transitions when replication is misconfigured or lacks permissions. Objects that fail replication will be skipped by lifecycle rules until replication is corrected. After you fix replication configuration or permissions and run S3 Batch Replication to catch up, lifecycle will automatically process those objects according to your configured rules.

🔒 The 2026 State of the SOC Report, based on more than 909,000 alerts observed via the Adlumin MDR at the N-able SOC between March and December 2025, lays out five practical steps to preserve operations when attackers strike. It urges layered, defense-in-depth designs that combine identity, endpoint, network, cloud, and perimeter visibility rather than relying on single-point solutions. The guidance highlights automation and SOAR to move containment and remediation to machine speed, modernized endpoint and ITDR identity controls to detect credential abuse, validated immutable backups to enable rapid recovery, and rigorous oversight of AI-driven processes to manage emerging attack surfaces.

🔒 Amazon RDS for Oracle now supports cross-account snapshot sharing for database instances configured with additional storage volumes. Customers can create, share, and copy DB snapshots that preserve the original storage layout, including up to three attached volumes, across AWS accounts and Regions. Use cases include isolated backups for compliance and restoring snapshots in separate accounts for diagnostics, development, and testing. This capability is available today via the AWS Management Console, AWS CLI, and AWS SDKs.

🔒 Ransomware increasingly targets home backups and personal NAS units, using automated scans, weak credentials, and social engineering to encrypt photos, documents, and synced cloud folders. Once inside, malware removes Windows shadow copies, encrypts connected external drives and mapped network shares, and corrupts cloud sync clients so remote copies mirror the damage. Follow the updated 3-2-1-1 rule: keep an offline copy, unplug external backups after each use, enable cloud versioning, enforce strong passwords and firmware updates, and back up authenticator data. Also enable features like System Watcher, avoid pirated installers, and test restore procedures regularly.

🔒 AWS Backup now supports Amazon Redshift Serverless in seven additional AWS Regions: Asia Pacific (Osaka, Hyderabad, Taipei, Kuala Lumpur, Auckland), Europe (Milan), and Africa (Cape Town). This expansion enables policy-based data protection and recovery for Redshift Serverless data warehouses in those Regions. Administrators can add resources to existing backup plans or create new plans and attach Redshift Serverless resources, using the AWS Backup console, CLI, or SDKs to get started.

🏢 Amazon RDS for Oracle is now available on AWS Outposts, enabling customers to run a managed Oracle database service on-premises with the same operational model used in AWS Regions. The offering supports Oracle Database 19c and 21c under a BYOL model and includes automated backups, automated patching, point-in-time recovery, CloudWatch monitoring, and encryption at rest with AWS KMS. It also supports multi-AZ deployments across Outposts racks for high availability and provides options for disaster recovery to the parent AWS Region or across Outposts.

🔒 Broadcom’s acquisition of VMware has accelerated migrations to alternatives such as Microsoft Hyper‑V, Azure Stack HCI, Nutanix AHV, Proxmox VE and KVM, but switching hypervisors introduces complex risks around disk formats, drivers, networking models and snapshot behavior. Successful transitions depend not on conversion tools but on verified, restorable, application‑consistent backups and rehearsed recovery drills performed before cutover. A unified, platform‑agnostic cyber protection approach with immutability, tightened RBAC and an off‑site copy reduces downtime, rollback risk and long‑term vendor lock‑in.

🔒 AWS Backup now supports protecting Amazon EKS clusters with logically air-gapped vaults. These vaults store immutable backup copies that are locked by default and encrypted with AWS-owned keys or customer-managed keys, and they can hold backups in the same account or across accounts and Regions. You can target a vault as the primary backup or copy destination via the console, API, or CLI, share recovery access through AWS Resource Access Manager (RAM) or multi-party approval, and initiate direct restore jobs from the recipient account without copying first to reduce recovery time.

🔒 AWS Backup now supports Amazon RDS Multi‑AZ clusters in 17 additional AWS Regions, extending managed backup coverage across Asia Pacific, Europe, South America, Africa, and Canada. The expansion brings centralized lifecycle management and immutable backups via AWS Backup Vault Lock to Multi‑AZ RDS clusters, improving retention controls and tamper protection. Administrators can add clusters to existing backup plans or create new plans and attach clusters using the console, AWS CLI, or SDKs.

🗂️ Microsoft will add granular file- and folder-level restore to Microsoft 365 Backup, allowing administrators to browse, search and recover individual files from SharePoint and OneDrive restore points rather than restoring entire sites or drives. The capability is limited to tenants with the backup service enabled and requires the SharePoint Backup Administrator role; end users will not see restore operations. Public preview began in early March 2026 and Microsoft expects general availability between late April and early May 2026. Customers are advised to review coverage, train backup administrators, and update recovery runbooks to incorporate file- and folder-level restores.

🚀 Azure now supports instant access for incremental snapshots of Premium SSD v2 (Pv2) and Ultra Disk, enabling immediate restores and near-full performance from creation. Restored disks hydrate rapidly and deliver single-digit millisecond reads and sub-millisecond writes without waiting for background copy. This reduces recovery time for rollbacks, maintenance, and rapid scale-out of stateful applications. Enable the feature via the existing snapshot API by adding the InstantAccessDurationMins parameter.

📌 Amazon RDS Snapshot Export to S3 is now available in AWS GovCloud (US) regions, enabling you to export snapshot data in Apache Parquet format for analytics, retention, and machine learning workflows. The export runs directly on snapshots — including manual, automated system, and AWS Backup snapshots — without impacting database performance. Exported Parquet files can be analyzed with Amazon Athena, Amazon SageMaker, Redshift Spectrum, or big data frameworks like Apache Spark. You can initiate exports from the RDS console, AWS SDK, or CLI with just a few clicks.

🔐 Ransomware has shifted boardroom and security priorities by showing that identity compromise can block recovery even after applications and data are restored. Security leaders now treat identity recovery as a designed capability, emphasizing immutable backups, automated restoration for Active Directory, and isolated backup platforms. Vendors such as Cognizant and Rubrik are positioning integrated services that combine orchestration, rapid recovery, and compliance-ready reporting to shorten downtime and reduce attacker re-entry risk.

🔒 AWS Backup now supports single-action cross-Region copies of database snapshots directly into logically air-gapped vaults for Amazon Aurora, Amazon Neptune, and Amazon DocumentDB. This removes the previous two-step process and eliminates intermediate copy storage and related costs, enabling faster recovery point objectives (RPOs) while reducing operational complexity. The capability is available today in all Regions where AWS Backup supports these databases and air-gapped vaults and can be used via the AWS Management Console, CLI, or SDKs.

🔁 Microsoft announces Azure NetApp Files Elastic zone‑redundant storage (ANF Elastic ZRS), a managed multi‑AZ file service that synchronously replicates data across three or more availability zones to deliver high availability and resiliency. The service provides automatic, service‑managed failover while preserving the same mount target and service endpoint to minimize application disruption and ensure zero data loss. ANF Elastic ZRS supports NFS and SMB, ONTAP data management features (snapshots, clones, backup), metadata performance optimizations, and cost‑efficient single‑volume multi‑AZ availability.

🔐 The FBI has launched Operation Winter SHIELD, a ten-week campaign outlining ten concrete actions organisations should adopt to improve cyber resilience across IT and OT environments. Developed with domestic and international partners and informed by recent investigations, the initiative connects observed adversary behaviour to practical defenses such as phish-resistant authentication, immutable offline backups, vulnerability management and reduced administrator privileges. Aligned with the US National Cyber Strategy and the FBI Cyber Strategy, the effort aims to harden critical infrastructure and reduce the attack surface.

🔍 Florida-based Cyber Centaurs discovered that the INC ransomware group left behind Restic backup artifacts that exposed an S3-style cloud repository used to hold stolen files. By performing forensic, non-destructive enumeration with Restic semantics, investigators were able to locate and decrypt datasets belonging to 12 US firms. The team reported findings to law enforcement and highlighted practical remediation steps: audit backups, monitor for encrypted egress, and patch backup software promptly.

🔐 Microsoft 365 tenant configurations are the operational blueprint for services such as Entra, Intune, Exchange, Defender, Teams and SharePoint. The piece stresses that Microsoft does not provide backups for tenant-level settings under the shared responsibility model, so restoration is the customer's duty. Lost or altered policies — from conditional access and MFA rules to DLP and retention policies — can disrupt security, compliance and business continuity. Organizations should adopt intelligent configuration backup to maintain a Zero-Trust posture and ensure recoverability.

🛡️ Amazon RDS for SQL Server now supports native differential and transaction log restores for instances configured with Multi‑AZ and same‑region read replicas. This removes the prior requirement to convert instances to Single‑AZ before performing differential or log restores. Customers can reduce restore time while maintaining Multi‑AZ high availability and preserving Read Replica read capacity. The feature is available in all Regions where RDS for SQL Server is offered.