Hope for the best, prepare for the worst: Why your customers will demand self-service back-up Presented by Ridley Ruth, COO
2014 a record year for hacking! 100K+ WordPress sites infected by mysterious malware Infected sites load attack code into webpages viewed by visitors. - Threatpost 75 million WordPress users in danger of being hacked Older versions of WordPress, such as 3.9.2, required a patch to deal with cross-site scripting vulnerabilities. - IBM Secure Intelligence
Breaking News Yahoo email Accounts were hacked in Jan 2014 (Washington Post) In September 2014 another 5 Million Gmail accounts were compromised (Business Insider) 273M 62% Of SMEs do not routinely backup their data This along with risky employee behaviors and various threats to data is putting them at great risk. (Trendmicro 2013) 60% Of data breaches are at companies with <100 employees Businesses that lose critical data typically go out of business within 6 months of the disaster. (Verizon 2013 Data Breach Report) 30K 10K # of websites the get hacked every day Majority of these sites are legitimate small businesses that are unknowingly distributing malicious code for the cyber criminals. (Sophos 2014) Websites are blacklisted by Google everyday I wish I had a dollar for every time someone said, but we are a small business, cyber criminals don t target us. (James Lyne, Sophos Labs 2013)
Key Trend: SMBs Using CMS CMS Market share CMS Top Vulnerabilities http://trends.builtwith.com/cms http://www.imperva.com/docs/hii_web_application_attack_report_ed5.pdf
Source: http://www.calyptix.com/malware/top-10-malicious-site-hosts-countries-and-file-types/
Compromised: Website Owner s Role A survey of 600 small business owners revealed: Most didn t know their site was compromised Discovered by visiting their blacklisted site Source: StopBadware, Commtouch
Compromised: Hosting Provider s Role Industry common practice 1 st incident - Offer free assistance and warning 2 nd incident Offer paid assistance and final warning 3 rd incident refuse to help and remove the user from server Source: StopBadware, Commtouch
Traditional Backup is Broken Common Issues Lack of consistent testing Lack of verification Backup failures Poor, incomplete backups Too many incremental backups Too many events trigger a backup Operator/user error Hardware and software failures Age and deterioration of media Technology obsolescence Backup Success Rates below https://www.gartner.com/doc/2809727?srcid=1-2819006590&pcp=itg
Hosting Provider SLA vs. Cost to Serve $113 U.S. Avg. per service request https://www.gartner.com/doc/2809727?srcid=1-2819006590&pcp=itg
Best Practices for Web Hosting Provider Source: StopBadware
Demands of a Hosting Provider
The Missing Piece: Self-Service Backup Give customers complete control of their data and business without adding huge investments in additional infrastructure or staffing to your bottom-line. Partnering with DropMySite offers substantial benefits to partners and customers. BENEFITS TO PARTNER Improve ARPU / margins Seamlessly integrated with existing platform Reduce churn with value-added services Improve customer stickiness No product development costs Reduce support costs BENEFITS TO CUSTOMER Easy to use automated backup solution Always on always available Accessible from their favorite control panel Peace of mind from added protection Minimize risk of unplanned downtime No IT knowledge needed
How DMS Helps: End to End Self-Service Product 1 DropMySite Safeguard your website and database. Backup, Monitor and Restore. Anywhere. Anytime. 2 DropMyEmail Start backing/archiving your email in two easy steps. Archive, Restore, Migrate and Comply. All in the cloud.
DropmySite Security Features Transferring data Backing up / Storing data Strict access controls as no one but you can access your data Experienced team enforcing data policy Secure Connection Always encrypted Data only accessed from your account Transport Layer Security (TLS) or Secure Socket Layers (SSL) Strict access controls as no one but you can access your data Virtual Private Cloud (VPC) SSL encrypted endpoints 256-bit Advanced Encryption (AES-256) Complete firewall solution Standard Distributed Denial of Service (DDoS) mitigation techniques
Case Study
Case In Point:.htaccess Attacks What is it? Using the.htaccess file, hackers can redirect web visitors to another website. Malicious hackers often inject malicious lines of code in benign.htaccess files. These malicious lines of code can infect website visitors, redirect traffic and cause user confusion by modifying files. What was the Damage? +100k WordPress users How self-service backup helps? Users can monitor their site to see if there are any unexpected file changes or redirects and always keep a backup of unaffected.htaccess files to compare to those on the server.
Key Takeaways Why your customers will demand self-service back-up? Downtime can result in revenue loss, loss in productivity, and an impact on reputation (SEO). Self-service backup provide customers a quick, easy way to restore their website and databases Risk mitigation requires a commitment to putting safety first and an easy way to continue business when situations occur Encourage cyber insurance by enabling a comprehensive data backup and recovery process for your customers. Successful cyber attacks are inevitable because no security is perfect and no one product alone can cover all basis. Help customers incorporate a day-to-day data management process Leverage partnership with Dropmysite without sacrificing additional resources and your reputation in order to deliver a great customer experience.
Be a Hero to your customers!
Thank You Ridley Ruth, COO Website: www.dropmysite.com For more information on partnership opportunities: sales@dropmysite.com @Dropmysite facebook.com/dropmysite Visit Dropmysite at hosting.fair