The new edition of the company’s data protection software DPX 4.8.1 adds backup for Microsoft 365 and other open virtualization platforms, including RedHat, Oracle, XenServer and KVM. Credit: Andrey Popov / Getty Images Catalogic Software has announced the latest version of its DPX enterprise data protection software, DPX 4.8.1, which now includes GuardMode for early detection of ransomware, and DPX vPlus, cloud backup support for Microsoft 365 and other open virtualization platforms.Catalogic DPX is a proprietary data protection platform that offers the capability to backup data and applications from virtualized machines. According to Catalogic COO Sathya Sankaran, VMWare and HyperV make up about 80% of the virtualization hypervisor market, while the remaining 20% is attributed to a mix of players, including Microsoft 365, and various open source options such as XenServer, Oracle VM, KVM, RedHat, Acropolis, OpenStack and RHV/oVirt. Catalogic DPX vPlus will provide support for these other hypervisors that are “usually neglected” by other backup solutions, according to Sankaran. GuardMode tracks file changes for early detectionGuardMode is a new feature for early detection of ransomware and will come at no additional cost for existing DPX subscribers. The feature builds on Microsoft’s filter driver, to monitor file shares and file system behavior. While block changes are more common than file changes and are usually looked at from incremental backups, GuardMode also focuses on file systems to register if a certain file is frequently opened and made changes to.Depending on the frequency of the changes made to files and by comparing them against a list of patterns from publicly available database, GuardMode detects the ransomware strain and calls in remediation. Additionally, owing to the underlining technique, GuardMode is also capable of pinpointing the affected files from an impending ransomware attack and thereby selectively rolls them back to facilitate an efficient recovery.Usually, ransomware recovery includes brute forcing your way back to production five days ago and this includes not just the affected files, but genuine employee-made changes on files and codes, Sankaran added.GuardMode will go live on July 12, while DPX vPlus will be live a week later, on July 19. While GuardMode is provided complimentary with DPX subscription, vPlus will be available at an additional cost. Related content news analysis 5 key takeways from Verizon's 2024 Data Breach Investigations Report The rapid of exploitation of zero-day vulnerabilities, such as MOVEit, and the effectiveness of ransomware attacks are two of the major findings from last year’s breach data. By Rosalyn Page May 01, 2024 5 mins Data Breach Zero-day vulnerability Data and Information Security feature The CSO guide to top security conferences Tracking postponements, cancellations, and conferences gone virtual — CSO Online’s calendar of upcoming security conferences makes it easy to find the events that matter the most to you. By CSO Staff May 01, 2024 15 mins Technology Industry IT Skills Events feature 3 Windows vulnerabilities that may not be worth patching Some vulnerabilities eat up a security team’s time and resources yet provide little or nothing in the way of true protection. Some may even introduce more risk to a network. By Susan Bradley May 01, 2024 7 mins Windows Security Patch Management Software Security Practices news analysis Chinese threat actor engaged in multi-year DNS resolver probing effort The unusual and persistent probing activity over the span of multiple years should be a reminder to organizations to identify and remove all open DNS resolvers from their networks. By Lucian Constantin Apr 30, 2024 7 mins Cyberattacks Network Security PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe