Cause For Pause: Accounting Firm Possibly Done In Due to Technician Error and Cryptolocker (reddit)
Posted by Philip Elder on 08 November 2013 01:49 PM
This article came across one of the lists I am a part of and really brought home our own experiences back when Backup Exec and Symantec spent three days working with us to recover a backup that in the end proved to be unrecoverable.
In the above case we were fortunate to have other methods in place to protect the data but we did end up losing the domain and 24 of a partner’s files out of 650GB of data (the failure was progressive – garbage in garbage out).
The BUE fail taught us to advocate strongly for us to be the ones to rotate the backups (the person responsible in the above case failed to rotate the two magazines) and to do a quarterly _full_ bare metal or hypervisor restore of the backup.
It also drove us to find a different backup and restore method that gave us portability for the backed up server along with good recoverability. We came across and have been running with StorageCraft’s ShadowProtect product ever since. Since then we have had some spectacular recoveries completed as a result of ShadowProtect and the skills learned via Jeff Middleton’s SwingIT migration methods.
One of the other lessons we learned early in our IT careers and is exemplified in the above article is the thoroughness with which we keep our client’s audit notes. We document absolutely _everything_ about their network setups. They get any updated versions after they have been updated. One can never be too sure!
A full bare metal/hypervisor restored backup is the ONLY known good backup. Period. Full Stop.
Chef de partie in the SMBKitchen