Would you survive a ransomware attack on you or your SAP Business One customers?

Posted 14th March 2019 by Walter Beek

Ransomware attacks are a large threat to businesses across the globe. At least two SAP Business One technical service providers that we are aware of have fallen victim in recent times.

Keeping your SAP Business One up and running is as key to us as it is to you. Reducing the opportunities for attack as much as possible is vital. Preventing a successful attack from spreading is of equal importance. It is never too late to secure.

There are three levels of protection we consider: each customer environment is run in their own fully segregated private cloud on AWS; we provide a Sophos based ransomware and antivirus protection as standard; and we enable disaster recovery from cold storage backup locations. So what can this mean for you or your SAP Business One customers?

On-premise versus the cloud

On-premise versus the cloud

It is possible that many of your (potential) customers view ransomware as a ‘cloud issue’. Make no mistake: it is not. On-premise environments are exposed to the same level of risk. It is a general business risk that requires a general business solution.

How can we help you educate you or your customers? How vulnerable are you or your customers and what can we do together to minimize their risks further?

The association of risk with the cloud is due to infamous attacks that affect multiple businesses — multi-tenant public cloud users. This is a popular choice for perpetrators; if one business is hit, then the multiple businesses on the platform can be infected and held to ransom.

Lemongrass not only provides Sophos based protection against ransomware as standard, we also only provide private cloud environments for SAP Business One at near multi-tenant cost.

Human error is difficult to counteract; according to the 2018 Verizon Data Breach Investigations Report, roughly one in 10 employees will click on a malicious phishing email. We recommend thorough training for all employees. But with those numbers there is a likely chance that ransomware will get past this first line of defense.

This is why we have made the strategic decision to deploy Sophos on all our environments. We have secured preferential rates with Sophos and can help you deploy this within your own as well as your customers business so that not only their SAP Business One, but their full business systems are protected. We view the use of Sophos or similar products as a ‘must’ in today’s business world.

Separate your customers from the crowd

Separate your customers from the crowd, on cloud

Within Amazon Web Services, the only cloud we use for all SAP Business One users, we provide each customer with their own, fully separated Virtual Private Cloud. This provides a high level of security, and amongst others prevents a successful breach spreading to a large number of your customers.

We set-up and run all customers as single tenant instances. This provides a private cloud for each and every customer – completely boxed off so there is no way for the virus to jump between instances. This level of separation from the masses means that not only is each customer protected from the employee actions from any other customer, they are also protected from attacks aimed at multi-tenant public cloud systems.

This provides a much higher level of defense, and immediately limits the risks of self-infliction and targeted attacks.

Separate their data in time

Separate their data in time, while still on the cloud

The next line of defense can be created by looking at customer back-ups and how they are structured. If back-ups are held in the same location and the main system is infected, then just as with multi-tenant instances, the virus will target backups and spread quickly. This could leave your customers cornered when you find that the roll-back solution, you thought you had, is also infected.

With the AWS platform we build in that back-ups are not held on mounted drive as standard, but instead in a different location and in cold storage. They remain on the same Amazon account but won’t be directly connected. This means that the majority of attacks, if they would breach the first levels of defense, will be prevented from reaching back-ups.

AWS cold storage has thereby the double benefit that it not only helps to optimize running costs for customers, but also protect their system. And although not a standard set-up, for the highly security conscious business owner, we can go as far as dissociating the storage from the main account.

Reputational damage

Reputational damage

Ransomware can leave your customers locked out of your business, and out of pocket. We have you and your customers’ Business One systems covered. It is important that you have your business covered as well. The reputational damage can cripple your business. And as a minimum, together we should offer an end-to-end protection to our joint customers.

Remember, it’s never too late to secure.

If you would like to talk to us about how your SAP Business One customers can be more secure, please contact us