How to mitigate ransomware from locking attached storage



  • I have OSX. Time machine takes periodic backups. This backup is encrypted.

    If my machine were to be infected and locked by ransomware, what prevents the backup from also being comprised as it is just attached storage? I believe that once decrypted (after prompt) it is just as vulnerable as the main SSD. It could be attached and encrypted without risk.

    Other than rotating out a volume periodically (either physically, or cloud), what other methods are employed currently for small businesses if the above is an accurate risk assessment?



  • Physical separation is how businesses deal with this threat. Unplug or unmount the backups once the backup is complete.



Suggested Topics

  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2