3, 2, 1 Restore… Failed
Backup is a key element of protecting data and more importantly ensuring that data can be recovered in the event of loss, breach or corruption. For UK-based website provider 123 Reg, a secure up to date backup was exactly what was needed when a storage failure took customer sites offline and rendered sites inaccessible.
In early March, a suspected disk failure on 123 Reg’s storage systems took down customer websites and when the organization restored data, it was from a backup from August 2017. Any sites that had been created since August were rendered completely offline, leaving customers outraged and searching for answers. While some were able to get some response, from Twitter, other customers voiced angry opinions on the organizations failure to respond to support tickets in a timely manner.
In a statement released to the Register, 123 Reg commented the following:
"Yesterday morning, a hardware failure on one of our servers led to a small number of customers’ websites being offline. Following attempts to restore these websites, regrettably, some returned to earlier versions or lost some content on their sites. Our service teams are continuing to help customers restore from their own backups. 123 Reg would like to apologize to all customers affected."
This, unfortunately, isn’t the first time 123 Reg has suffered some sort of breach, or lost customer sites but hopefully, they are able to implement a secure daily backup solution and reduce downtime and ensure up to date data is restored if needed.
Consequences of a data breach
For 123 Reg the obvious effect of this sort of data breach is the likely loss of customers and the negative effects on reputation. In a world where organizations are increasingly 24/7, having your website taken down and rolled-back to a version around 6-months old simply isn’t acceptable. Data breaches are only going to have a negative effect on business and with organizations often having to compensate customers, can be extremely costly. In addition, regulatory supervisory authorities such as the Information Commissioner’s Office (ICO) will investigate data breaches and have the power to issue monetary fines if they find that data has not been protected securely.
The Data Protection Act, which is the current regulation ruling how organizations protect data, gives the ICO the power to issue fines of up to £500,000 for serious breaches. In January 2018 alone the ICO gave out fines to the value of £1,651,000 with three being more than £300,000.
FedEx unable to deliver highly secure data protection
Earlier this year Kromtech security researchers discovered a publicly available Amazon S3 bucket containing huge amounts of personal data from users across the globe. After analyzing the exposed data, the Kromtech security experts ascertained that the data belonged to Bongo International LLC, a company which in 2014 had been acquired by FedEx. Following a relaunch of the organization, under a fresh name, in 2016 and subsequent closure in 2017 the data seems to have gone unnoticed and been left unsecured.
Of the 119,000 records found the information included scanned documents including passports, driving licenses, security IDs and address details.
Equifax left accounting for data breach
Back in September 2017, Equifax was hit with one of the largest data breaches in history. With over 140 million customers data being breached; data lost by the firm included credit card and financial information as well as personal information such as addresses. Since the breach took place it has emerged that more records were in fact accessed. The total count of lost records is now estimated to stand at a whopping 185 million with the estimated cost to Equifax predicted to be almost $500 million.
Working with experts to avoid the effects of a data breach
Since 1998 Redstor have been experts in helping organizations to protect, manage and secure data with solutions around the areas of backup, disaster recovery and archiving. Redstor help thousands of organizations worldwide to back up their data to highly secure data centers, ensuring that data is recoverable on-demand. To find out more about Redstor’s fully encrypted, automated backups and how you can protect your data, get in touch today.
For the seventh year in a row, Redstor has played host to customers and partners at the Windlesham Golf Course in Surrey for an event of golf, dining... read more