Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
AI agent executes end-to-end ransomware attack via development platfor...
ICAC Commissioner attends first IAACA European regional anti-corruptio...
Research: Asian enterprises advancing AI without resilience strategies...
Penta Security Sets the Benchmark for Web Application Security, Earnin...
India bank domain registry exposed sensitive data in security lapse: e...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      S E Asia governments targeted by cyber-espionage group

      S E Asia governments targeted by cyber-espionage group

      Tuesday, June 23, 2026, 8:00 AM Asia/Singapore | Features
    • Featured

      Rethinking network and infrastructure design for resilience

      Rethinking network and infrastructure design for resilience

      Thursday, June 18, 2026, 2:17 PM Asia/Singapore | Features
    • Featured

      Bringing cybercriminals to justice in APAC

      Bringing cybercriminals to justice in APAC

      Thursday, June 11, 2026, 10:30 AM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • AWARDS 2026
  • Directory
  • E-Learning

Select Page

Features

Backups are not enough for cyber resilience

By CybersecAsia editors | Monday, May 5, 2025, 4:49 PM Asia/Singapore

Backups are not enough for cyber resilience

The sophistication of cyber-attacks and the vast amount of data needed for AI applications call for more than just backups for recovery.

“Cyber resilience is no longer optional; it’s essential for business survival,” said Anthony Spiteri, Regional CTO APJ, Veeam. “Organizations that fail to modernize their backup and recovery strategies risk not only operational downtime but also reputational damage, regulatory penalties, and financial loss.”

Nigel Ng, Senior Vice President, Asia Pacific, Tenable, also shared why businesses must go beyond backups to strengthen their overall cybersecurity posture: “In an era defined by increasingly sophisticated ransomware and a rapidly expanding digital footprint, backups cannot be an afterthought. They must be rigorously tested, encrypted, and stored in secure environments that guard against unauthorized access.”

However, as digital infrastructures grow more complex with the accelerated adoption of AI in the cloud, backups alone are no longer enough.

Ng said: “It is critical for businesses to fully integrate backup processes within a broader exposure management framework that offers unified visibility across identities, data, cloud workloads, and AI assets. This approach helps organizations minimize their attack surface and significantly speed up recovery after a breach or ransomware event. Taking these proactive steps strengthens operational resilience, protects invaluable data assets, and ultimately helps preserve stakeholder trust.”

Veeam’s Spiteri added: “Cybercriminals have adapted, targeting backups themselves in ransomware attacks, making traditional backup strategies insufficient unless they are part of a larger data resilience framework.”

Furthermore, he pointed out, many small and medium-sized businesses are lagging behind their larger counterparts – they often rely on outdated backup methods, such as external drives, or misunderstand their SaaS vendors’ responsibilities regarding data protection.

“The modern cybersecurity landscape demands proactive data resilience, a strategy that ensures backups remain protected, accessible, and rapidly recoverable in the face of an attack.” 

Han-Tiong Law, Regional CTO, Asean and Greater China, Rimini Street, concurred that data protection requires more than just backups: “As cyberthreats continue to evolve, businesses must also evolve their security posture, implementing proactive measures that go beyond patching. With continuous monitoring, zero-day defense, and the ability to protect systems within seconds after a vulnerability is detected – all without disruption to the business – these are just a few ways organizations can help ensure their data and systems are in good health all year round.”

Data resilience

According to Spiteri, key components of a data resilience strategy include:

  • Immutable backups: Cybercriminals are now targeting both data availability and confidentiality – two critical pillars of the CIA triad (Confidentiality, Integrity and Availability). With 87% of ransomware attacks in Q4 2024 involving data exfiltration, companies must ensure they have immutable backups that cannot be altered or deleted
  • Automated threat detection: Backups should not be passive archives. Continuous scanning for anomalous activity allows businesses to identify and mitigate threats before they escalate
  • Rapid recovery capabilities: A backup is only useful if it can be restored quickly. Organizations must regularly test recovery processes and implement orchestration to streamline business restoration

“The growing sophistication of ransomware attacks has exposed the limits of traditional backup strategies,” said Spiteri. “While backup software is commonly deployed, many organizations fail to implement a comprehensive data resilience strategy. Even the trusty 3-2-1 framework – which ensures robust data protection by maintaining three copies of data, stored on two different media types, with one copy offsite – now needs to be extended to 3-2-1-1-0.”

Crucial for recovery from ransomware, the additional 1-0 includes one immutable or offline copy, and importantly, the entire system is verified to have zero errors.

“Beyond simply having a backup, data resilience means ensuring regular testing, hardening, and conducting disaster recovery drills. Without these measures, businesses remain vulnerable to attack, with recovery efforts potentially leading to reinfection or extended downtime. In today’s threat landscape, data resilience isn’t just a technology issue; it’s a business-critical necessity to ensure continuity, security, and fast recovery when disaster strikes.”

Pages: 1 2

Share:

Previous23% of HTML email attachments are malicious
NextOne cybersecurity firm reports a slight decline in ransomware attacks last year

Related Posts

What keeps bank CISOs awake at night started in 2020

What keeps bank CISOs awake at night started in 2020

Wednesday, October 6, 2021

Impact of digitalization on OT security

Impact of digitalization on OT security

Tuesday, September 13, 2022

Repaving the rocky road to better IoT security starts here

Repaving the rocky road to better IoT security starts here

Friday, March 6, 2020

Warning: Sign in to confirm your age!

Warning: Sign in to confirm your age!

Tuesday, August 30, 2022

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Cyber threats have become more frequent and sophisticated, targeting organizations of all sizes across all …Download Whitepaper
  • Zero Trust Made Simple: Why it matters and how to get started

    Zero Trust Made Simple: Why it matters and how to get started

    Data breaches and cyberattacks are no longer limited to large, high-profile organizations.Download Whitepaper
  • Cloud Secure Edge: Remote access, better security

    Cloud Secure Edge: Remote access, better security

    ​SonicWall Cloud Secure Edge™ is a modern, cloud-native Security Service Edge (SSE) solution that addresses …Download Whitepaper
  • Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • How a Vietnamese D2C retailer built its own secure digital infrastructure

    How a Vietnamese D2C retailer built its own secure digital infrastructure

    Would your organization build your own digital infrastructure – including AI governance and cybersecurity – …Read more
  • Cyber protection for medical clinics in Singapore

    Cyber protection for medical clinics in Singapore

    As Singapore’s healthcare sector becomes increasingly digital and interconnected, clinics are facing heightened cyber risks, …Read more
  • India’s WazirX strengthens governance and digital asset security

    India’s WazirX strengthens governance and digital asset security

    Revamping its custody infrastructure using multi‑party computation tools has improved operational resilience and institutional‑grade safeguardsRead more
  • Bangladesh LGED modernizes communication while addressing data security concerns

    Bangladesh LGED modernizes communication while addressing data security concerns

    To meet emerging data localization/privacy regulations, the government engineering agency deploys a secure, unified digital …Read more

Bottom sidebar

Other News

  • ICAC Commissioner attends first IAACA European regional anti-corruption conference in Hungary

    Friday, July 3, 2026
    BUDAPEST, Hungary, July 2, 2026 …Read More »
  • Penta Security Sets the Benchmark for Web Application Security, Earning Frost & Sullivan’s 2026 South Korea Company of the Year Recognition

    Thursday, July 2, 2026
    By combining intelligent threat detection, …Read More »
  • SK shieldus Receives Frost & Sullivan’s 2026 APAC Customer Value Leadership Recognition for Excellence in Cybersecurity Services

    Monday, June 29, 2026
    The company is recognized for …Read More »
  • Global Tech Shift: Tune Talk Launches World’s First Network-Enforced Child Safety Mobile Plan, Bypassing App-Level Limitations

    Saturday, June 27, 2026
    PETALING JAYA, Malaysia, June 26, …Read More »
  • DJI Enterprise Advances Industry with New Framework for Dock as First Responder (DFR) Deployments

    Thursday, June 25, 2026
    New White Paper Outlines Best …Read More »
  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2026 CybersecAsia All Rights Reserved.