Nextcloud is not only a great collaboration platform. It is also an effective tool against ransomware!
Ransomware is rapidly becoming more dangerous, with targeted and untargeted attacks rising 7 times compared to 2019, as ZDnet recently reported. Each attack can require payment of hundreds of thousands of dollars, but besides those direct costs, the disruption to work that organizations experience is massive.
A file sync solution can help protect from Ransomware attacks in two ways.
Many ransomware solutions change the extensions of files they encrypt, or add very specifically named files like your_files_are_encrypted_read_this.txt. Nextcloud can keep a list of such names and extensions. When they are found upload can be blocked and users and admins can be warned. This is indeed what our Ransomware Protection app does. Admins can modify the checklist to ensure it is always up to date, but we make sure that new versions of the app also include updated ransomware extension lists. You can find the app in our app store
Modern ransomware is hard to recover from. A time-based backup is sadly not sufficient, as the ransomware takes its time to encrypt files and usually waits with encrypting recently used files until the last moment, delaying discovery. This means that putting back a full backup from the moment of discovery will not work – one has to go back days or weeks to get back the earliest encrypted files. And that means all work done for days or weeks would be lost.
What is needed is for each file to determine when it was infected and recovering just the version before it. Nextcloud uniquely offers this capability with the Ransomware Recovery app, developed by the University of Konstanz in Germany. It uses entropy analysis to detect when files were encrypted and offers one-click recovery, bringing each individual file back to just before it got encrypted. The best part is that the app can even be installed AFTER the infection took place and still recover data, analyzing the version information in Nextcloud.
Get the app in our app store here.
Nextcloud offers the most advanced security technology in the on premise content collaboration market and our ransomware protection and recovery tools are a part of that protection offered. Of course, ransomware attacks are multi-faceted and especially in cases of targetted attacks, one can expect the attackers to try and circumvent the protections in place in an organization. We therefore certainly recommend customers to also employ other active and passive measures, like using our anti-virus scanner (which optionally can use an on premise Kaspersky anti-virus scan server).
If you want to learn more how your organization can enable collaboration while keeping data secure, contact our sales team or ask for a trial!
Presentamos Nextcloud Talk «Munich», una plataforma de comunicación de código abierto que ofrece una respuesta contundente a las nubes de Big Tech y es digitalmente soberana para equipos híbridos. Ahora es aún más resistente, potente y fácil de poner en marcha. Más información.
Ver más
Bienvenido a Nextcloud Hub 10. Nuestra última versión viene con un rendimiento reforzado en todas las aplicaciones, una integración más profunda en toda la plataforma y docenas de nuevas funciones que te facilitarán el día a día.
Ver más
Have you ever wondered how to develop an app for Nextcloud? With our tutorials, you can get started in no time! Start developing an app now.
Ver más
Nextcloud announces new partnership with Thinkfree Office, a self-hosted office suite developed in South Korea, which is known for its ease of use. This collaboration is all about giving you more options, greater control, and a better user experience.
Ver más
Find out how to automate business processes at work with our powerful open source automation tool: Nextcloud Flow, your workflow assistant.
Ver más
