NetApp and Elastio are helping enterprises strengthen their cyber resilience through layered defense that extends from production storage to recovery data. Security teams must be prepared to address threats at every layer of their technology stack, including ransomware that has moved silently into production before being detected and that may reside in snapshots and backups. Advanced ransomware is designed to evade prevention tools by moving stealthily through production, staying below detection thresholds, and reaching backup data before any alerts are triggered. In the face of this type of ransomware, continuous verification of recoverability becomes critical.
“When migrating our infrastructure, ensuring the right level of backup security and reliability was non-negotiable,” said Marc Crudgington, vice president of IT Infrastructure and CISO at Crane WW Logistics. “Elastio provided continuous inspection of our backups from day one, giving us confidence in our ability to recover from ransomware. That’s the standard we hold ourselves to.”
The companies are integrating Elastio’s Provable Recovery Control into the NetApp Ransomware Resilience Service under the name “Powered by Elastio,” incorporating Deep File Inspection in snapshots. Together, the service offers end-to-end resiliency against ransomware, from detection to recovery, using recovery points that are continually verified as clean. This approach allows you to respond to both known ransomware attacks and emerging variants.
“Storage needs to be part of the conversation when defining a comprehensive cybersecurity strategy,” explains Gagan Gulati, senior vice president and general manager of Data Services at NetApp. “By protecting data where it resides, we’re making storage a priority to combat threats like ransomware. But business resilience and operational continuity are too critical to rely on a single layer of defense. By collaborating with Elastio, we’re giving businesses an additional tool to protect their most important asset: data from ransomware.”
A new layer of defense within the NetApp Ransomware Resilience Service
NetApp Ransomware Resilience Service: Detects and contains ransomware at the data layer in real time, takes immutable snapshots, guides recovery, and continually evaluates ransomware posture in ONTAP. Includes behavior-based detection using Autonomous Ransomware Protection (ARP), designed to respond to even advanced ransomware patterns.
Elastio Provable Recovery Control: Deep file inspection in ONTAP snapshots, detecting zero-day ransomware, early-stage malware, and stealthy corruption that has evaded perimeter controls. It requires no agents and continuously identifies the last known clean recovery points, reducing the risk of ransomware reinfection during restore.
Thanks to this collaboration, both companies reinforce the cyber resilience of their customers by directly integrating Elastio Provable Recovery Control into the NetApp Ransomware Resilience Service, without the need for additional acquisitions or architectural changes, also increasing preparedness against ransomware incidents.
NetApp Ransomware Resilience Service detects and contains ransomware at the data layer in real time
“Most organizations discover that their recovery data is compromised at the worst possible time: during an active incident,” says Naj Husain, CEO of Elastio. “At that point, the question of whether backups are clean after a ransomware attack is no longer theoretical. The joint solution answers that question on an ongoing basis, before the incident demands it.”
Managed cloud service availability
The NetApp Ransomware Resilience Service powered by Elastio is expected to be available soon, starting with Amazon FSx for NetApp ONTAP, followed by other ONTAP environments. Amazon FSx for NetApp ONTAP is a fully managed cloud service that offers highly reliable, scalable, high-performance, feature-rich file storage based on the popular NetApp ONTAP file system. Companies interested in early access should contact their NetApp or Elastio representative to evaluate their current recovery posture and ransomware preparedness.
