The new edition of the company’s data protection software DPX 4.8.1 adds backup for Microsoft 365 and other open virtualization platforms, including RedHat, Oracle, XenServer and KVM. Credit: Andrey Popov / Getty Images Catalogic Software has announced the latest version of its DPX enterprise data protection software, DPX 4.8.1, which now includes GuardMode for early detection of ransomware, and DPX vPlus, cloud backup support for Microsoft 365 and other open virtualization platforms.Catalogic DPX is a proprietary data protection platform that offers the capability to backup data and applications from virtualized machines. According to Catalogic COO Sathya Sankaran, VMWare and HyperV make up about 80% of the virtualization hypervisor market, while the remaining 20% is attributed to a mix of players, including Microsoft 365, and various open source options such as XenServer, Oracle VM, KVM, RedHat, Acropolis, OpenStack and RHV/oVirt. Catalogic DPX vPlus will provide support for these other hypervisors that are “usually neglected” by other backup solutions, according to Sankaran. GuardMode tracks file changes for early detectionGuardMode is a new feature for early detection of ransomware and will come at no additional cost for existing DPX subscribers. The feature builds on Microsoft’s filter driver, to monitor file shares and file system behavior. While block changes are more common than file changes and are usually looked at from incremental backups, GuardMode also focuses on file systems to register if a certain file is frequently opened and made changes to.Depending on the frequency of the changes made to files and by comparing them against a list of patterns from publicly available database, GuardMode detects the ransomware strain and calls in remediation. Additionally, owing to the underlining technique, GuardMode is also capable of pinpointing the affected files from an impending ransomware attack and thereby selectively rolls them back to facilitate an efficient recovery.Usually, ransomware recovery includes brute forcing your way back to production five days ago and this includes not just the affected files, but genuine employee-made changes on files and codes, Sankaran added.GuardMode will go live on July 12, while DPX vPlus will be live a week later, on July 19. While GuardMode is provided complimentary with DPX subscription, vPlus will be available at an additional cost. Related content news Iranian hackers harvest credentials through advanced social engineering campaigns Mandiant observed several malicious campaigns with threat actors impersonating journalists and harvesting the victim’s cloud environment credentials. By Shweta Sharma May 02, 2024 4 mins Hacker Groups Social Engineering news Dropbox Sign hack exposed user data, raises security concerns for e-sign industry The names and email addresses of those customers were also exposed who had never created an account with Dropbox Sign but had “received or signed a document through Dropbox Sign.” By Gyana Swain May 02, 2024 5 mins Data Breach news UnitedHealth hack may impact a third of US citizens: CEO testimony Despite paying a $22 million ransom in Bitcoin to regain access to encrypted files, the company cannot confirm whether copies of the data were made or published online. By Prasanth Aby Thomas May 02, 2024 4 mins Data Breach Ransomware Hacking news Most interesting products to see at RSAC 2024 Tools, platforms, and services that the CSO team recommends 2024 RSA Conference attendees check out. By CSO Staff May 02, 2024 6 mins RSA Conference Security PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe