We are going through a "security audit" and one of their questions was *"Are you able to test the integrity of back-ups prior to restoration to be confident it is free from malware?"*
I know there was the introduction of "*IBM Spectrum Protect detects anomalies to workload patterns to alert administrators of potential Ransomware infections for hypervisor-based workloads, enabling clients to be aware of possible attacks and mitigate them before they spread.*" After we jumped from 7.1 to 8.1.12, we started seeing these messages all the time but they don't seem to be of any value/accuracy/crying wolf so we just ignore them: 03/21/2022 04:06:18 ANR3692W A client backup anomaly was detected for node BLOGSDB.VCU.EDU, session number 46614. The average number of backed up bytes is 1282827896, the actual number of backed up bytes was 4950926291, the average data deduplication is 0 percent, and the actual data deduplication was 0 percent. (SESSION: 46614) Your thoughts? Do you use something like Cobalt Iron to scan backups for issues? -- *Zoltan Forray* Backup & VMware Systems Administrator Enterprise Compute & Storage Platforms VCU Infrastructure Services www.ucc.vcu.edu zfor...@vcu.edu - 804-828-4807 Don't be a phishing victim - VCU and other reputable organizations will never use email to request that you reply with your password, social security number or confidential personal information. For more details visit http://phishing.vcu.edu/ <https://adminmicro2.questionpro.com>
