Learn about BlueXP ransomware protection
Ransomware attacks can block access to your systems and data and attackers can ask for ransom in exchange for the release of data or decryption. According to the IDC, it is not uncommon for victims of ransomware to experience multiple ransomware attacks. The attack can disrupt access to your data between one day and several weeks.
BlueXP ransomware protection is an orchestration service for ransomware protection, detection, and recovery. The service protects application-based workloads of Oracle, MySQL, VM datastores, and file shares on on-premises NAS storage (using the NFS and CIFS protocols) as well as Cloud Volumes ONTAP in Amazon Web Services across BlueXP accounts and backs up data to Amazon Web Services cloud storage and NetApp StorageGRID.
What you can do with BlueXP ransomware protection
The BlueXP ransomware protection service provides full use of several NetApp technologies so that your storage administrator, data security administrator, or security operations engineer can accomplish the following goals:
-
Identify all application-based, file-share, or VMware-managed workloads in NetApp on-premises NAS with NFS or CIFS working environments in BlueXP, across BlueXP accounts, workspaces, and BlueXP Connectors. The service then categorizes the data priority and provides recommendations to you for ransomware protection improvements.
-
Protect your workloads by enabling backups and Snapshot copies on your data.
-
Detect anomalies that might be ransomware attacks.
-
Respond to potential ransomware attacks by automatically initiating a tamper-proof NetApp ONTAP Snapshot that is locked so that the copy cannot be deleted accidentally or maliciously. Your backup data will stay immutable and protected end to end from ransomware attacks at the source and in the destination.
-
Recover your workloads that help accelerate workload uptime by orchestrating several NetApp technologies. You can choose to recover volumes, folders, or specific files. The service provides recommendations on the best options.
Benefits of using BlueXP ransomware protection
BlueXP ransomware protection offers the following benefits:
-
Discovers workloads and datasets, analyzes the priority based on usage index, and ranks their relative importance.
-
Evaluates your ransomware protection posture and displays it in an easy-to-understand dashboard.
-
Provides recommendations on next steps based on discovery and protection posture analysis.
-
Applies AI/ML-driven data protection recommendations with one-click access.
-
Protects data in top application-based workloads, such as MySQL, Oracle, VMware datastores and file-shares.
-
Detects ransomware attacks on data in real time on primary storage using AI technology.
-
Initiates automated actions in response to detected potential attacks by creating Snapshot copies and initiating alerts about abnormal activity.
-
Applies curated recovery to meet RPO policies. BlueXP ransomware protection orchestrates recovery from ransomware incidents by using several NetApp recovery services, including BlueXP backup and recovery (formerly Cloud Backup) and SnapCenter.
Cost
NetApp doesn’t charge you for using the trial version of BlueXP ransomware protection. The full version of BlueXP ransomware protection can be used with a NetApp license or an AWS subscription.
Licensing
With BlueXP ransomware protection, you can use different licensing plans including a free trial, a pay-as-you-go subscription, or bring your own license.
The BlueXP ransomware protection requires a NetApp ONTAP license.
The general release of BlueXP ransomware protection, unlike the Preview release, includes a license for NetApp Autonomous Ransomware Protection technology. Refer to Autonomous Ransomware Protection overview for details. |
For details, see Set up licensing.
How BlueXP ransomware protection works
At a high-level, BlueXP ransomware protection works like this.
Feature | Description |
---|---|
IDENTIFY |
|
PROTECT |
|
DETECT |
|
RESPOND |
|
RECOVER |
|
Supported backup targets, working environments, and data sources
Use BlueXP ransomware protection to see how resilient your data is to a cyber attack on the following types of backup targets, working environments, and data sources:
Backup targets supported
-
Amazon Web Services (AWS) S3
-
NetApp StorageGRID
Supported working environments
-
On-premises ONTAP NAS (using NFS and CIFS protocols)
FlexGroups are not supported.
-
Cloud Volumes ONTAP in AWS (using NFS and CIFS protocols)
Data sources
The service protects the following application-based workloads on primary data volumes:
-
NetApp file shares
-
VMware datastores
-
Databases (MySQL and Oracle)
Terms that might help you with ransomware protection
You might benefit by understanding some terminology related to ransomware protection.
-
Protection: Protection in BlueXP ransomware protection means ensuring that Snapshots and immutable backups occur on a regular basis to a different security domain using protection policies.
-
Workload: A workload in BlueXP ransomware protection can include MySQL or Oracle databases, VMware datastores, or file shares.