Despite this being more of a security question, I thought I'd start here as external hardware is related anyway.
I have a service for home and small business customers where I monitor and react to backup issues on their home computers and workstations. I currently deploy various versions of Acronis drive image products to service this need.
Currently however, finding a way to protect customers from both hardware failure and now ransonmware is becoming a bit of a challenge. Coupled with that is the reality that I rely on my customers to have everything in order remotely so backups can occur, having also offsite backups would be too difficult to accomplish at this point in time.
I have witnessed ransomware encrypt *.tib files (Acronis drive image files) in the past so I know that backups are not immune from encryption. As a majority of the customers are on simple USB connected drives it is easy to see how susceptible to encryption they really might be.
I have been (unsuccessfully) looking into ways that I can further protect customers. One way I thought was for a script to enable a USB device for the backup, then disable it soon after as Acronis supports pre and post backup scripts.
Another theory was the lock down a drive letter using some sort of user authentication, so Acronis logs on with different credentials than the current user and further protects the drive from write access. Unfortunately I have not been too successful with either.
I would certainly appreciate any advice about any software/techniques anybody has come across to meet this challenge?
Edited by hamluis, 27 May 2017 - 09:15 AM.
Moved from External Hardware to Gen Security - Hamluis.