When it comes to cybercrime, you are not a unicorn.

At the risk of sounding like a broken record, cybercrime is only getting worse. And no matter how ‘special’ and ‘unique’ you are, you are unlikely to remain unscathed.

Ransomware is now the rule, not the exception

In Veeam’s 2022 Ransomware Trends Report, they summarised the learnings gained by interviewing 1,000 organisations that had all experienced ransomware attacks. So, not those living in fear of an attack, but those who had been through one and came out the other side in varying degrees of health. The researchers talked to security professionals, IT operations, backup administrators and CISO (or equivalent IT executives).

Veeam’s ransomware report dovetails with their 2022 Data Protection Trends report, where 76% of the 3,393 organisations surveyed had suffered at least one ransomware attack, and 24% had avoided or were totally unaware that they’d been attacked. As with the ransomware report mentioned above, the criteria for being included in this research was that each organisation must have experienced at least one attack in 2021.

Between these two pieces of research, two important trends were uncovered:

  1. Cybercriminals were double dipping. To quote Veeam: “Only about one in four (27%) organizations suffered just one attack, presumably with bad actors attempting to return for more ransom.”
  2. No unicorn is safe. Again, to quote Veeam: “Organizations of all sizes appear relatively equal in the persistence of attacks from small-to-medium-sized businesses (SMBs) (100–249 employees) to large enterprises (>5,000 employees). Said another way, just like any other disaster (fire/flood), ransomware attacks are universally pervasive.”
    Veeam also noted that ransomware survey respondents reported that an average of 47% of their data was encrypted by ransomware.

As a result of this research, one of Veeam’s primary conclusions was that “the best way to reduce the risk of a cyberattack like ransomware is to have a comprehensive and tested disaster response plan.”

Move your mouse away from that!

Despite our increased awareness and training, humans remain the greatest point of failure when it comes to inviting cyberattacks into our businesses. Phishing emails, malicious links and websites are still the most common point of entry for criminals.

One positive observation made by Veeam was that only 1% of their respondents reported they could not identify the entry point. In other words, 99% of the time, the monitoring and investigation tools they used pinpointed their vulnerabilities – human and otherwise – so they could be addressed.

Once a bad actor has gained entry into your environment, Veeam says that 94% of the time, your backup repositories are their primary target. And that 68% of repositories are impacted as a result.

Veeam adds:

“Specific production platform or application types were targeted in 80% of successful ransomware attacks, presumably based on known vulnerabilities within common platform types, such as mainstream hypervisors and operating systems or wide-spread workloads like NAS filers or database servers.”

We get it: Protecting your data isn’t simple

With organisational data often spread across multiple clouds and systems, as well as geographies and locations, it only adds to the challenge of ensuring your data is not only available and scalable – but also protected.

Faced with today’s cyber challenges (and new threats looming as AI becomes part of the baddies’ arsenal), your ability to be cyber resilient and recover to a business-as-usual state as quickly as possible is more critical than ever. No one can count on being the fairy-tale exception to the rule when it comes to ransomware attacks.

To rehash that well-worn saying: It’s not a matter of if your unicorn breaks its horn, but when.

According to Veeam’s 2023 Data Protection Trends report, “…many legacy IT environments are running legacy backup solutions that were designed for the physical data center era. This specifically hinders an enterprise’s ability to focus on cloud-based SaaS and IaaS, which puts your data at risk of data breach and can lead to unoptimized large-scale data management.”

Interestingly, Veeam reports that 52% of those organisations with encrypted data paid the ransom demand (mainly with the help of their cyber insurance policies) and successfully recovered it. As for the rest? 25% paid up but didn’t recover their data. The remainder undertook remediation to recover their data successfully, but this took an average of 18 days, which is a long time to be out of the business-as-usual loop.

It’s time to join the rest of the herd

While cybercrime is pervasive and seemingly unavoidable, it doesn’t absolve your business from taking its share of responsibility from a legal, commercial, and ethical standpoint.

It’s hard (and for some, impossible) to recover from a massive fine, the sense of betrayal experienced by your customers when their data is sold off to the highest bidder, or your employees are unable to work as every line of business application freezes. For days, weeks, and even months.

And yet, knowing this, only one out of every six organisations test whether their backup solutions work by restoring and verifying their data. So, when it comes to a ransomware attack, most businesses are still winging it when it comes to having backup that works.

Unicorn or not, the only certainty in life for today’s businesses is the importance of weathering that inevitable cyber storm. And that includes ensuring you have:

  1. Reliable, innovative, industrial-strength cybersecurity solutions
  2. A well-understood, committed and tested cyber resiliency strategy

Feel free to talk to us if you’re unsure about either. We’ll even throw in some love and rainbows.

Written in partnership with

Zero trust given. And why that’s a good thing for hybrid cloud environments. 

While it makes perfect sense to push your workloads to the public cloud, especially if they can be moved into SaaS environments, this doesn’t work for all legacy workloads. This is why we continue to see – and advocate – hybrid cloud environments.  

For many organisations juggling workloads is not a matter of taking a cloud-first approach but opting for cloud-fit instead. This involves finding the ideal cloud environment for each workload. One that’s cost-effective and ticks all the security boxes.  

But this is when it gets tricky. If you’re taking a cloud-fit approach, how do you ensure cyber resiliency across all your platforms? And what happens when your data is moving between those platforms? 

Data breach statistics aren’t getting any prettier, with a 26% increase in notifiable data breaches to OAIC in the latter half of 2022. Which is where zero trust comes to the fore.  

But first, let’s back up a bit – what is zero trust, why is it the hot new approach, and how do you get some? 

Trust no one, question everything 

Two of the best cybersecurity rules to live by are: 1. Trust no one. 2. Question everything. And those rules, in a nutshell, are the key to zero trust.  

Zero trust takes distrust of and questioning your users to a whole new level – but this is a good thing. Regardless of whether they’re inside or outside of your network, users are subjected to authentication, authorisation, and continuous validation for security configuration and posture. Only when they pass these conditions with flying colours are they a) granted access or b) allowed to have continued access to your applications and precious data.  

Importantly to those who have gone the cloud-fit route, zero trust assumes that there is no traditional network edge. So, networks can be local, in the cloud, or a combination or hybrid with resources anywhere, as well as users in any location. Regarded as ‘perimeterless security’ (just think of networks without borders!), the zero-trust security model is also known as zero trust architecture (ZTA), zero trust network architecture or zero trust network access (ZTNA). 

And while it’s so hot right now, zero-trust isn’t actually new. (You might like to check out this excellent article on the history of zero-trust here on TechTarget.) However, it is the way to go.  

In a 2022 Forrester Opportunity Snapshot, the renowned researcher reports that 83% of Australian and New Zealand firms say zero trust is the future of their organisation’s security. And in tech news publisher VentureBeat’s article on zero-trust trends for 2022, they include zero-trust becoming the foundation of more hybrid cloud integrations as one of the big four trends to watch out for.  

So, how and where do you get started? 

It’s all about leadership 

It’s important to remember that zero trust is a philosophy, not a product. And like most philosophies, it can take some effort to get everyone on the same page.
  
To quote John Engates, Field CTO for Cloudflare:

“To get zero trust across the finish line, some companies may appoint a zero trust officer. Showing leadership, demonstrating how important it is to the organisation, putting someone in charge of getting to a zero trust stance is really critical. No matter how you demonstrate that to your stakeholders, it’s really critical for someone to stand up and say, ‘We’ve got to do better at this; we have to do it comprehensively across the entire organisation. And we have to do it soon because the threats aren’t getting easier to deal with.” 

In their Opportunity Snapshot, Forrester agrees, saying it’s critical to “be a leader and communicator, not a technician.” They report that 48% of zero trust leaders in Australia and New Zealand said “their stakeholders struggled to understand the business value of adopting a Zero Trust approach. Only 41% listened and understood stakeholders’ criticism or feedback, then worked through their issues with the Zero Trust team, and returned with a solution.” Forrester concludes that this poses a challenge as zero trust leaders thought the most important trait in their role was to be technical (52%), compared to being communicative (13%). 

Despite the challenges, Forrester says that these same zero trust firms reported a more empowered employee experience, with 74% reporting more flexibility to work from anywhere or on any networks, 61% were relieved of the burden of security responsibility through password-free authentication, and 27% enjoyed an increased choice to work with any device or programmes.  

So, where to start? 

Engates from Cloudflare is a fan of making the zero trust goal manageable by attacking it in bite-sized chunks. He says that the important thing is to “get started and get moving.” And we agree.  

To help you address the challenges created by the shift to cloud hosting, remote work, and other modernisation, Zerotrustroadmap.org provides an excellent step-by-step vendor-agnostic roadmap, complete with an implementation timeline.   

Or you’re welcome to just talk to us.  

In partnership with Cloudflare, a global leader in zero trust services.  

Cyber resiliency in a multi-cloud environment – how hard can it be?

When data security is ranked as the leading challenge facing organisations that access and maintain data in cloud environments (above cost, complexity and lack of expertise), you know there’s an issue.

It’s one thing to rely on the standard backup and recovery tools available from a public cloud service provider (CSP), but what happens when most Australian organisations use three public CSPs on average? How do you juggle using three sets of tools effectively?

In truth, we believe you can’t – and you shouldn’t. Not if you value your business, and your data.

Why aren’t public CSP in-built tools enough to ensure cyber resilience?

While turning to a CSP’s in-built tools may appear to be a logical and cost-effective decision, they tend to offer only a basic level of coverage against the global flood of cyber-attacks, data theft and application outages. In addition, CSP backup and recovery offerings cannot scale, fully protect, or provide you with a unified view of your data across all your cloud environments.

With cyber resilience the new business imperative, it’s not a matter of safety in numbers. Having three times the tools doesn’t equate to three times the protection. Taking a fragmented approach to protecting your multi-cloud environment increases the opportunity for gaps to form in your security, backup and recovery efforts. As a consequence, organisational and reputational risk goes up – not down.

More frequent use of CSP tools is also associated with more operational downtime related to outages, application failures, human error, and even natural disasters. Despite 53% of Australian organisations agreeing that relying solely on CSP backup and recovery tools puts their organisation at risk, 55% use CSP tools all the time.

The only way to confidentially mitigate the impact of costly assaults on your multi-cloud environment is through third-party protection.

When it comes to CSP responsibility, you don’t likely know what you don’t know

Perception is a wonderful thing. But unfortunately, while you’d imagine that your CSP is responsible for protecting your data, that’s not the case.

Digging into the fine print of your end-user licensing agreement usually unearths that the CSP is only responsible for protecting the infrastructure, and that you are entirely responsible for protecting your data and workloads in that cloud environment. So, the offer of standard backup and recovery tools doesn’t even begin to cover your back – and your data – in case of a cyberattack. Times three.

Even using Microsoft or Office 365 doesn’t guarantee that your data is backed up in the cloud. Office 365 takes a shared responsibility approach. While they may store it, it’s your responsibility to control and protect it.

In our recent paper (2022 Research Report on Securing Your Enterprise in a Multi-Cloud Environment), we identified that 96% of Australian organisations didn’t realise who was responsible for what.

This brings us to the big question…

How can you be cyber resilient if you don’t have a handle on your cloud environments?

When you follow best practices for backup, data protection and disaster recovery, you are more cyber resilient. Best practice includes having a “3-2-1” backup strategy – one primary backup and two additional copies of their data, using at least two different storage mediums, with at least one copy offsite.

Backup timing is also critical – and this depends on what you’ve identified as your RPO (recovery point objective). For example, if you’re only taking data snapshots every 12 hours, can you afford to be without that data from 11hrs 45mins ago? Mission-critical data that hasn’t been backed up for more than 12 hours is more likely to be permanently lost in case of a ransomware attack or server failure. Yet, only 10% of Australian organisations are committed to continuous data backup, while 45% back up their data less frequently than every 12 hours.

While that ‘may’ work for some businesses, it certainly doesn’t for others. A case in point is law practice Colin, Biggers & Paisley, who says, “Losing even an hour of productive time costs a firm a great deal, and legal work never stops. It’s around the clock.”

Colin, Biggers & Paisley are just one of many Australian organisations that opt for solutions like Veritas NetBackup to ensure they are actively cyber resilient across single or multi-cloud environments. Such is the reliability of their Veritas backup and disaster recovery system that Colin, Biggers & Paisley proudly present the results of their twice-yearly data backup and DR audits to potential clients as a benefit of engaging with them.

In partnership with

VMWare elevates Source Technology to Principal Partner

In further solidifying our relationship with VMWare, Source Technology has recently achieved Cloud Verified and Principal Partner status.

To become a Principal Partner we have demonstrated continued efforts in becoming an expert in VMware solutions and service, and have taken the necessary steps through Master Services Competency (MSC) achievement—or the equivalent—as well as demonstrated a growing company sales performance. Principal partners are the most qualified partners in VMware Partner Connect and with this distinction, they demonstrate a broad range of expertise and the ability to best serve their customers’ needs. 

As a Cloud Verified Partner you know that Source Technology will expertly deliver cloud infrastructure as a service—so your cloud strategy will be flexible and resilient today, tomorrow and for years to come. 

Source Technology is also the first Australian partner to have achieved the VMWare Disaster Recovery as-a-service certification. They are one of only six partners with this certification across Asia Pacific. 

DRaaS is a Business Growth Strategy

Transformational changes, as we experienced in 2020, bring challenges and unforeseen business opportunities. Improving enterprises’ growth opportunities and ensuring business continuity are two areas where the cloud plays a vital role. Organizations that embrace the cloud transform into asset-light entities that are agile, more competitive and focused on the growth of their businesses. Cloud-based disaster recovery as a service (DRaaS) is the foundation of a sound business continuity strategy that keeps the company running, even in the aftermath of a disruptive event.

Enterprises with mature cloud adoption improved business resiliency and reliability as they reduced downtime by 58% and monthly critical incidents by 55% with cloud migration.1

Ride the waves?

It is always prudent to ride the waves of change than to fight them. New trends, including SaaS and IoT, have shifted enterprise data to the edge and the cloud. A recent IDC report found that only 30% of stored data is stored in internal data centers. It makes the most sense to have your backup applications near your data in the cloud.2

The rising cyberthreats serve as a constant reminder and a motivator for moving corporate data to the cloud to be better protected. Business continuity requires air-gapped backup copies that are readily available in the event of a disruption. DRaaS is the wise option for a full recovery and the lowest downtime.

Gartner predicted that cyberattacks were likely to impact one organization every 11 seconds by the end of 2021. Aside from being costly, breaches will damage an organization’s reputation and cause loss of customers and trust. Cyber-attacks tend to have a long tail, and their impact on enterprises lasts for years.3

DRaaS makes good business sense?

DRaaS is the most precious business insurance policy that one can find. The value of DRaaS is rarely appreciated until we need it, however it turns out that businesses need disaster recovery a lot. Gartner says 76% of organizations reported at least one incident in the past two years that required an IT DR plan.4 Let’s look at some of the business benefits of DRaaS:

  • Budget-friendly OpEx. The cloud model offers a utility consumption model where you pay for what you consume. The new model removes the expensive upfront CapEx investments and lowers operating expenses for simplified testing.
  • Free scarce IT resources. DRaaS frees IT teams to focus on more valuable business initiatives.
  • Maintain business continuity. Cloud-based backups are air-gapped and beyond bad actors’ reach, ensuring business continuity with the least disruptions.
  • Data protection. Cyberthreats are a constant danger that requires resources beyond IT teams’ abilities. About 81% of organizations consider security their top challenge.5
  • Continuous compliance. DRaaS enables enterprises to respond to audits and demonstrate compliance with proper reporting and documentation.

Learn more about how to grow your business with our cloud DRaaS by visiting: Source Technology

Sources:

  1. McKinsey Digital February 2021. “Cloud’s trillion-dollar prize is up for grabs.”
  2. Seagate 2021. “Rethink Data. Put More of your Business Data to Work from Edge to Cloud.”
  3. Gartner December 2020. “How to Cut Costs for Backup and Recovery Software, Now and in the Future.”
  4. Gartner April 2020. “Survey Analysis. IT Disaster Recovery Trends and Benchmarks.”
  5. Flexera 2021. “Flexera 2021 Stare of the Cloud.”

How much is your customer data worth? And how much should you pay to protect it?

Modern businesses rely on data for every aspect of their operation. How you protect this data on a daily basis helps to define the operational integrity and success of your business. Along with intellectual property, financial data, and employee records, customer data demands special attention. While there is a cost associated with professional backup and disaster recovery services, it is minimal compared to the extensive losses associated with many data loss scenarios.

The real business value of customer data

The value of data is well-known, with an entire field of study called infonomics concerned with the economic value of information. However, despite the ability of data to transform every aspect of business, according to Gartner analyst Doug Laney, many companies manage their “office furniture with greater discipline than [their] information assets.”

According to Gartner, information has three foundational measures:

  1. Intrinsic value – How correct is your data?
  2. Business value – How relevant is your data?
  3. Performance value – How hard does your data work?

Customer data is particularly sensitive due to its high value across all three measures. The people who trust you with their data are largely responsible for your success, with data integrity offering a range of immediate and follow-through benefits. In order to measure the real cost of data backup and recovery services, it’s important to weigh up the direct costs with the following potential impacts of data loss.

Recovery Costs

There are a range of immediate and ongoing recovery costs associated with any data loss scenario. Lacking or incomplete backup solutions may cause data loss, with each accident or security incident needing to be analysed, corrected, and secured to ensure it doesn’t happen again. As you might expect, this can be an expensive exercise, with a single security incident enough to cause substantial damage to your balance sheet.

Loss of business continuity

In order to define the value of your customer data, it’s important to understand the opportunity costs associated with data loss. Whether it’s due to data theft, natural disaster, or human error, lost or compromised data has a range of potential impacts that threaten your ongoing productivity. Along with the immediate and direct costs associated with recovery, data loss is likely to compromise the continuity of your business operations.

Non-Compliance

Compliance is a serious issue for any business, especially when you’re dealing with private customer records. Depending on your industry sector and jurisdiction, non-compliance may have significant financial and legal implications. Professional third-party backup services allow you to meet stringent compliance obligations, including service-level agreements, reporting, and record-keeping. Non-compliance often comes with substantial fines, with prevention always better than cure.

Reputation damage

Integrated data backup solutions help you to avoid data loss and enable immediate recovery should a security event occur. Along with the immediate costs associated with recovery and non-compliance, and the long-term damage of lost business continuity, there are more indirect costs associated with reputation damage. A single security incident can threaten the hard-earned reputation of any business, with preemptive data backup and recovery measures needed to ensure a strong and enduring reputation.

Complete data backup and recovery solutions for Microsoft 365

From limited to substantial, from immediate to long-lasting, there are a number of real costs associated with data loss events. In order to secure your business and get it ready for the future, it’s important to look after your valuable data assets. Specialised third-party solutions are required for any business, especially those that rely on cloud-based software services such as Microsoft 365.


If you’re ready to take responsibility for your data, please download our white paper, Best Practices for Backing Up Microsoft 365

Source Technology takes home the NetApp Solution Innovation Award

NetApp recently announced their APAC Partner Excellence Awards for 2021, with Source Technology taking out the Solution Innovation Award for Backup as a Service.

We’re particularly honoured to be the only Australian Partner recognised in the awards.

The partner awards were held virtually to recognise partners that have “demonstrated outstanding commitment” toward customer success and revenue growth.

“We are especially proud to acknowledge our partners’ successes in helping our customers navigate the most challenging period we have ever seen,” NetApp APAC vice president of channel and alliances Wendy Koh said.

This award reflects our work with some major utility providers in Melbourne to deliver data delivery and protection services utilising NetApp technologies. This recent uplift in technology has shortened recovery times while improving ransomware protection whilst enabling our clients to realise efficiencies across their data protection spend.

Outside of this project, Source Technology has consistently delivered revenue growth and net new logos to NetApp through their services.

This is the second NetApp award we’ve won here at Source Technology after taking out New Partner of the Year in 2019

https://www.crn.com.au/news/melbournes-global-storage-scores-at-netapps-apac-partner-awards-567637

Source Technology wins NetApp New Partner of the Year

NetApp held its partner awards in Sydney on November 21 to recognise top-performing partners.

Source Technology is thrilled to announce that we won NetApp New Partner of the Year! This is a testament to the great relationship we’ve built with NetApp in a short space of time and illustrates the value of their technology.

“The high calibre of entries this year is a testament to the commitment of our partners and the continuous collaboration between our business and those who are committed to delivering the data fabric message to the market,” NetApp A/NZ director of channels and alliances, Neville James, said.

“NetApp’s partner network is fundamental to the success of our business, and both finalists and award winners have demonstrated outstanding effort working with customers, providing unique solutions supported by our advanced capabilities.”

NetApp Partner Awards 2019 Austalia and New Zealand Winner New Partner of the Year the Year

https://www.arnnet.com.au/article/668929/netapp-reveals-top-performing-partners-2019/

Announcing the Source Technology Partnership with NetApp

Source Technology are excited to announce their partnership with NetApp Australia Pty. Ltd. The five-year agreement will allow Source Technology to offer Managed Services now in partnership with NetApp using NetApp data management platforms.

“The NetApp partnership will showcase a number of options for storage management to customers wishing to adopt in cloud or on-premise managed services. Primarily we will be focussing on backup, disaster recovery, infrastructure and Office365 managed services, with additional products to follow.”
Gavin Hoffmann, Sales & Marketing Director – Source Technology.

The partnership with NetApp highlights Source Technology’s focus to strengthen its holistic approach to data management and protection. The joint teams will work together to ensure customers have superior options for data management, data protection, analytics, IOT and security.

As customers demand more freedom-of-choice in these areas, and consider the best outcome in terms of cloud, hybrid cloud and on-premise locality, the idea of a universal data management service becomes an ever more important value add to Business and to the protection of business critical data and operations.

NetApp is the data authority for hybrid cloud, providing a full range of hybrid cloud data services that simplify management of applications and data across cloud and on-premises environments to accelerate digital transformation. Together with our partners, we empower global organisations to unleash the full potential of their data to expand customer touch-points, foster greater innovation, and optimise their operations. For more information, visit www.netapp.com. #DataDriven

Get in touch with the Source Technology team now to learn more about how our full suite of data management solutions can help your Business achieve their data management goals.

Get in touch for a Free, No‑Obligation Consultation

Arrange a chat with our experienced team to discuss your data protection, disaster recovery, cloud or security requirements.

  • Arrange an introductory chat about your requirements
  • Gain a proposal and quote for our services
  • View an interactive demo of our service features

Prefer to call now?
Sales and Support
1300 88 38 25

This field is for validation purposes and should be left unchanged.

By filling out this form you are consenting to our team reaching out to you. You may unsubscribe at any time. Learn more by visiting our Privacy Policy

This field is hidden when viewing the form

Source Technology LogoInformation Security Management System ISO 27001 Certified

Disaster Recovery as a Service

Your IT disaster recovery strategy. Fully tested. Run at 100% capacity during a disaster or cyber event.

Backup as a Service

Your data protection strategy. Simplify your IT operations with all-inclusive backups and recoveries.

M365 Backup as a Service

Mitigate your risk of data loss by ensuring your Microsoft365 data is backed up and recoverable.

SaaS Backup as a Service

Backup and recover Salesforce, MS Dynamics, Google Cloud.

Company


Customer Stories


Resources


Contact


Call 1300 88 38 25

[email protected]

Visit us on LinkedIn

Post: PO Box 1197, Collingwood VIC 3066

© 2026 Source Technology. All rights reserved. Privacy Policy Terms of Service