Immutable backups and Cloud: how to protect data from ransomware

13 June, 2022

Stefano Papaleo

Stefano Papaleo
CTO | PM & Solution Architect | Team Leader dell’area Service Delivery



Ransomware is one of the biggest cybersecurity threats a company can face. How it works is as simple as it is deadly: through encryption, it makes it impossible for users to access stored files and content. In order to gain access again, the company is asked for a ransom and, for as long as it is down, the organization suffers damage in terms of turnover, operations and image.

This is why it is critical for any organization to have an effective backup system which ensure real-time restoration of functionality in the event of a ransomware attack, in order to avoid losing valuable time on the business front.

But there is an additional problem: hacking is constantly evolving, and today cybercriminals are able to encrypt even backups. To try to counter this critical issue and offer better protection from ransomware, has been developed a special category of backups, in which information referred to as "immutable data" is stored.

What is immutable data?

As the name suggests, immutable data cannot be deleted or changed. This type of data cannot be stored in traditional databases: it must be placed in special databases that do not overwrite new information over old, but maintain a history of all data, creating a new dedicated folder with each entry.

Cloud backup: the most secure immutable backup

It is good to remember that data stored in immutable backups, even if they are safer, are not invulnerable to ransomware. This is why it is useful to set and keep several restore points (annual, monthly, weekly, daily) and a physical and geographical separation between backup copies. This practice is also known as the "3-2-1 rule," or the "3-2-1-0 Veeam rule."

A backup copy is better protected if it is disconnected from the network, which, however, makes it dormant and isolated. Recovering it and bringing it back online sometimes takes a lot, and in disaster recovery, time is precisely the most valuable element.

So how to protect data while keeping its recovery as performant as possible? The best expedient is to turn to cloud enterprise backup, a type of online backup that offers important advantages, such as:


  • lower cost than local backup
  • almost instantaneous access to data
  • higher level of protection


Combining a cloud storage with an immutable backup is therefore the most effective solution for a company’s disaster recovery plan. To be able to do this, there are several tools on the market among which tools such as Wasabi and Veeam Backup & Replication stand out for efficiency.

In addition to providing a cloud backup extension, these softwares enable continuous security monitoring and avoidance of encryption by cryptographic ransomware, increasing security exponentially.

Finally, since Microsoft guarantees data access but is not responsible for the data backup, it is important to engage a provider that can back up data stored through Microsoft 365, eliminating the risk of data loss.


Do you want to know more about the most effective immutable cloud backup solutions? Contact us, we will provide you with all the information!

Discover all our services


Keep up to date on our news

@ 2022 (Copyright) 4IT Solutions
Privacy Policy