Latest news with #AnandEswaran
Tahawul Tech
29-04-2025
- Business
- Tahawul Tech
70% of organisations are still under cyber-attack despite improved defences
Veeam® Software, the #1 global leader by market share in Data Resilience, recently announced the findings of their latest research, From Risk to Resilience: Veeam 2025 Ransomware Trends and Proactive Strategies Report, revealing alarming insights into the evolving threat landscape of ransomware attacks. With cyber threats becoming more sophisticated and frequent, the report underlines the need for organisations to prioritize their defences, mitigate risks and recover effectively. To help address these persistent cyber threats, the report shares several actionable steps organisations can take to bolster defence, mitigate risk and recover more quickly, as well as the best practices of companies able to successfully recover. Veeam surveyed 1,300 organisations to gauge how Chief Information Security Officers (CISOs), security professionals, and IT leaders are recovering from cyber threats. Ransomware attacks are becoming more refined and pervasive, posing significant challenges to organisations globally. The Veeam report reveals that while the percentage of companies impacted by ransomware attacks has slightly declined from 75% to 69%, the threat remains substantial. This decrease is attributed to improved preparation and resilience practices, as well as increased collaboration between IT and security teams. However, as ransomware attacks from both established groups and 'lone wolf' actors proliferate, organisations must adopt proactive cyber resilience strategies to mitigate risks and recover more swiftly and effectively from incidents. 'Organisations are improving their defences against cyber-attacks, yet 7 out of 10 still experienced an attack in the past year. And of those attacked, only 10% recovered more than 90% of their data, while 57% recovered less than 50%. Our latest findings clearly indicate that the threat of ransomware will continue to challenge organisations throughout 2025 and beyond', said Anand Eswaran, CEO of Veeam. 'As the nature and timing of attacks evolve, it is essential for every organisation to transition from reactive security measures to proactive data resilience strategies. By adopting a proactive security approach, investing in strong recovery solutions, and fostering collaboration across departments, organisations can significantly reduce the impact of ransomware attacks'. Key Findings and Trends to Watch in 2025: Law Enforcement is Forcing Threat Actors to Adapt: In 2024, coordinated efforts by law enforcement agencies led to significant disruptions in major ransomware groups, such as LockBit and BlackCat. However, the rise of smaller groups and independent attackers has increased, necessitating ongoing vigilance. In 2024, coordinated efforts by law enforcement agencies led to significant disruptions in major ransomware groups, such as LockBit and BlackCat. However, the rise of smaller groups and independent attackers has increased, necessitating ongoing vigilance. Data Exfiltration Attacks Grow : The report notes a troubling trend toward exfiltration-only attacks – when cybercriminals break into an organisation's network but do not encrypt or lock the data Instead, they focus on stealing sensitive information—like personal data, financial records, or intellectual property—and transferring it outside the organisation. Organisations with weak cybersecurity measures are particularly vulnerable, as threat actors rapidly exploit vulnerabilities, often within hours. : The report notes a troubling trend toward exfiltration-only attacks – when cybercriminals break into an organisation's network but do not encrypt or lock the data Instead, they focus on stealing sensitive information—like personal data, financial records, or intellectual property—and transferring it outside the organisation. Organisations with weak cybersecurity measures are particularly vulnerable, as threat actors rapidly exploit vulnerabilities, often within hours. Ransomware Payments Are Decreasing : The total value of ransomware payments fell in 2024, with 36% of affected organisations opting not to pay a ransom. Of those that did pay, 82% paid less than the initial ransom and 60% paid less than half that sum, emphasising the importance of robust recovery strategies. : The total value of ransomware payments fell in 2024, with 36% of affected organisations opting not to pay a ransom. Of those that did pay, 82% paid less than the initial ransom and 60% paid less than half that sum, emphasising the importance of robust recovery strategies. Legal Consequences of Ransom Payments are Emerging: New regulations and legal frameworks are discouraging ransom payments, with initiatives like the International Counter Ransomware Initiative urging organisations to strengthen their defences rather than capitulate to attackers. New regulations and legal frameworks are discouraging ransom payments, with initiatives like the International Counter Ransomware Initiative urging organisations to strengthen their defences rather than capitulate to attackers. Collaboration Reinforces Resilience Against Ransomware : Enhanced communication between IT operations and security teams, along with partnerships with law enforcement and industry players, has proven vital in fortifying defences against ransomware. : Enhanced communication between IT operations and security teams, along with partnerships with law enforcement and industry players, has proven vital in fortifying defences against ransomware. Budgets Rise for Security and Recovery, but More Is Needed: While organisations are allocating more resources to security and recovery efforts, there remains a significant gap in investment relative to the growing threat landscape. Organisations that prioritise data resilience can recover from attacks up to seven times faster and experience significantly lower data loss rates. These successful organisations share several common attributes, including robust backup and recovery strategies, proactive security measures, and effective incident response plans. The report emphasizes the importance of shifting from reactive security to proactive cyber resilience strategies to meet the challenges of ransomware. Findings from the report also encouraged organisations to adopt the 3-2-1-1-0 data resilience rule, ensuring that backups are immutable and free from malware before restoration. Pre-attack confidence among ransomware victims often doesn't reflect reality, as 69% believed they were prepared before being attacked, while their confidence plummeted by over 20% afterward, revealing significant gaps in planning. While 98% of respondents had a ransomware playbook, less than half of organisations had key technical elements included, such as backup verifications and frequencies (44%) and a pre-defined 'chain of command' (30%). Notably, CIOs experienced a 30% decline in their preparedness rating post-attack, compared to a 15% drop for CISOs, suggesting that CISOs have a clearer grasp of their organisation's security posture. These findings underscore the importance of fostering organisational alignment in cyber resilience and preparation, emphasising the need for regular training and exercises across all teams to ensure a coordinated response during and after an attack. The full Veeam 2025 Ransomware Trends and Proactive Strategies Report is available now for download at For more information on Veeam, visit Image Credit: Veeam
TECHx
28-04-2025
- Business
- TECHx
Veeam Software Highlights ESG Goals in New Report
Home » Green Tech » Veeam Software Highlights ESG Goals in New Report Veeam Software has released its first Environmental, Social, and Governance (ESG) Report, coinciding with Earth Day's 55th anniversary. This report showcases the company's commitment to sustainability, ethical practices, and transparency. At VeeamON, CEO Anand Eswaran emphasized the company's dedication to improving the workplace and positively impacting the world. He highlighted that Veeam's responsibility extends beyond compliance and includes efforts to protect the planet, support its people, and contribute to the communities it serves. The report highlights several key environmental initiatives, including e-waste recycling. In 2023-2024, Veeam recycled 1,203 laptops, preventing 3,402 pounds of e-waste. Additionally, eight Veeam offices hold LEED certifications, reflecting the company's commitment to green building practices. Veeam also measured and reduced its Scope 1 and Scope 2 emissions in 2024. Moving forward, Veeam plans to calculate Scope 3 emissions and collaborate with suppliers to further reduce their environmental impact by 2026. On the social front, Veeam employees volunteered 2,793 hours in 2024 to support various causes, including animal shelters and wildfire relief efforts. Employee satisfaction remains high, with 84% rating Veeam as a great place to work. The company also launched EmpowerHer, offering free certification training to women in tech, and partnered with organizations like Women in Tech and Out & Equal. Veeam provides competitive benefits, including parental leave, 401(k) matching, and unlimited PTO. In terms of governance, Veeam ensures its ESG strategy is overseen by its Compliance Department, which reports to the Board of Directors. The company achieved a 100% completion rate for cybersecurity training and has obtained certifications such as ISO 27701 and ISO 27017. Veeam also introduced a Generative AI Policy to strengthen its commitment to data privacy and ethical practices. Veeam's ESG Report sets the foundation for the company's continued efforts in sustainability, showcasing its achievements while setting ambitious goals for the future. The company remains dedicated to improving its environmental and social impact, ensuring a sustainable future for all.
Zawya
28-04-2025
- Business
- Zawya
Veeam unveils inaugural ESG report on Earth Day, highlighting sustainability, social impact, and corporate governance initiatives
DUBAI, UAE – Veeam® Software, the #1 global leader by market share in Data Resilience, today announced the release of its first Environmental, Social, and Governance (ESG) Report, coinciding with the 55th anniversary of Earth Day. This landmark report showcases Veeam's commitment to inclusively creating a sustainable future while maintaining the highest standards of trust and governance. 'Today at VeeamON, we are proud to launch our inaugural ESG report, which is an important milestone in our commitment to making Veeam the best place to work, while positively impacting the world around us,' said Anand Eswaran, CEO of Veeam. 'At Veeam, we believe that our responsibility extends beyond compliance; it encompasses our commitment to the planet, our people, and the communities we serve. It's not just about saying what we'll do, it's about showing how we've made progress and setting out ambitious goals for the future. As we celebrate Earth Day, we are reminded of the vital role each of us plays in protecting our resources and environmental stewardship, ensuring a vibrant future for generations to come.' Key Areas of the Veeam ESG Report include: Environment: Caring for Our Planet E-Waste Recycling: Veeam recycled 1,203 laptops globally in 2023-2024, preventing 3,402 pounds of e-waste through its hardware recycling initiatives. Facilities: Eight Veeam offices are LEED-certified, showcasing the company's dedication to green building practices. Greenhouse Gas Emissions: Veeam measured its baseline Scope 1 and Scope 2 emissions in 2023, achieved a reduction in emissions in 2024. Future Goals: By 2026, Veeam plans to calculate Scope 3 emissions and collaborate with suppliers to track and reduce their environmental impact. Social: Supporting Our Team and Communities Community Impact: In 2024, Veeam employees volunteered 2,793 hours, supporting causes such as animal shelters, wildfire relief, and dementia care centers through initiatives like Veeam Cares and the Veeam It Forward Marathon. Employee Engagement: 84% of employees rated Veeam as a "good place to work," and 96% of participants in the 2024 Global Day of Learning found the program insightful. Empowering People: Veeam launched initiatives like EmpowerHer, providing free certification training to 150 women, and partnered with organizations like Women in Tech and Out & Equal. Benefits: Veeam offers competitive benefits, including parental leave, 401(k) matching, unlimited PTO, and support for family planning and adoption. Trust: Leading with Integrity Governance: Veeam's ESG strategy is overseen by its Compliance Department, which reports to the Board of Directors. Cybersecurity: The company achieved a 100% completion rate for its mandatory cybersecurity training and implemented advanced phishing simulations to enhance resilience. Certifications: Veeam secured industry-leading standards such as ISO 27701, ISO 27017, and HIPAA attestation, with further certifications expected in 2025. AI and Data Privacy: Veeam launched a Generative AI Policy, an updated Code of Conduct and rigorous data protection measures underscoring its commitment to ethical practices. As Veeam continues its journey towards sustainability, this initial ESG Report serves as a platform to showcase achievements and outline future company goals. Veeam remains committed to continuous improvement, aligning actions with its mission of creating a resilient and inclusive future. About Veeam's ESG Measurement Veeam's global compliance team meticulously compiled the ESG report using a blend of comprehensive internal and external data collection and analysis mechanisms. Employing industry-standard methodologies, the team ensured accurate and transparent reporting of its environmental footprint. Beyond the Greenhouse Gas Protocol, Veeam's reporting aligns with key ESG frameworks and standards such as the Global Reporting Initiative (GRI), Sustainability Accounting Standards Board (SASB), and Task Force on Climate-related Financial Disclosures (TCFD). These frameworks provide detailed guidelines and metrics for assessing and disclosing sustainability performance, helping Veeam set a new industry benchmark. Additionally, Veeam actively seeks feedback from employees and stakeholders to continuously improve its sustainability initiatives and address any challenges. About Veeam Software Veeam®, the #1 global market leader in data resilience, believes every business should be able to bounce forward after a disruption with the confidence and control of all their data whenever and wherever they need it. Veeam calls this radical resilience, and we're obsessed with creating innovative ways to help our customers achieve it. Veeam solutions are purpose-built for powering data resilience by providing data backup, data recovery, data portability, data security, and data intelligence. With Veeam, IT and security leaders rest easy knowing that their apps and data are protected and always available across their cloud, virtual, physical, SaaS, and Kubernetes environments. Headquartered in Seattle with offices in more than 30 countries, Veeam protects over 550,000 customers worldwide, including 67% of the Global 2000, that trust Veeam to keep their businesses running. Radical resilience starts with Veeam.
TECHx
25-04-2025
- Business
- TECHx
Ransomware Trends 2025 Reveal Rising Risks and Recovery Gaps
Veeam Software has released its new report on ransomware trends 2025. The report, From Risk to Resilience , highlights how cyber threats continue to grow in frequency and complexity. Based on a survey of 1,300 organizations, the findings show that 69% were hit by ransomware in the past year. While this marks a slight improvement from 75% the year before, the risk remains high. Most organizations still face major challenges in recovering data. The research reveals that only 10% of those attacked recovered more than 90% of their data. In contrast, 57% recovered less than half. This gap in recovery shows why proactive data resilience is now essential. Veeam CEO Anand Eswaran said that businesses must shift from reactive security to proactive strategies. He emphasized the need for better collaboration between IT and security teams. The report also found that law enforcement disrupted major ransomware groups in 2024. However, smaller groups and solo attackers are now on the rise. These new threats require constant vigilance and fast action. Another trend is the increase in data exfiltration-only attacks. Instead of encrypting files, attackers steal sensitive data and move it outside the network. These types of attacks are harder to detect and stop. There is some positive news. Fewer companies are paying ransoms. In fact, 36% chose not to pay at all. Among those who did, 60% paid less than half the demand. Strong recovery plans help organizations resist ransom pressure. Legal changes are also playing a role. New frameworks are discouraging ransom payments. Global initiatives are urging companies to invest more in defense. Budgets for cybersecurity are rising, yet gaps still exist. Many companies lack essential recovery tools or processes. Even when playbooks are in place, few include key technical steps like backup testing. Pre-attack confidence is often misleading. While 69% felt prepared, confidence dropped sharply after attacks. CIOs reported a 30% decline in their preparedness rating. CISOs, in comparison, showed a 15% drop. Organizations that recover faster share key traits. These include tested backup systems, clear incident response plans, and proactive risk assessments. The report recommends following the 3-2-1-1-0 rule to keep backups secure and malware-free. Ransomware trends 2025 make it clear—resilience is no longer optional. Regular testing, better team coordination, and clear planning are vital to reduce impact and speed up recovery.
Techday NZ
24-04-2025
- Business
- Techday NZ
Veeam unveils data resilience model as outages cost more than $400 billion
Veeam Software has launched a new Data Resilience Maturity Model aimed at providing organisations with a strategic means to assess and enhance their data resilience. The release of the Data Resilience Maturity Model (DRMM) comes alongside findings from research conducted by Veeam in partnership with McKinsey, which indicate a significant gap between perceived and actual data resilience among organisations. According to the joint study, while 30% of Chief Information Officers (CIOs) believe their organisations are above average in data resilience, fewer than 10% actually meet that standard. The research also highlights the substantial costs associated with IT downtime. For companies in the Global 2000, IT outages cost more than $400 billion annually, with individual companies incurring losses of approximately $200 million per outage, factoring in both reputational and operational impacts. Anand Eswaran, Chief Executive Officer of Veeam, commented on the findings: "Data resilience is critical to survival - and most companies are operating in the dark. The new Veeam DRMM is more than just a model; it's a wake-up call that equips leaders with the tools and insights necessary to transform wishful thinking into actionable, radical resilience, enabling them to start protecting their data with the same urgency as they protect their revenue, employees, customers, and brand." The DRMM is structured to help leaders evaluate and improve their organisation's data resilience, facilitating alignment between technical, human, and procedural aspects of data management. This collaborative approach aims to minimise risk and enable organisations to maintain focus on strategic priorities. The model, developed by a consortium of industry experts, is said to be the only framework offering a comprehensive view encompassing cyber resilience, disaster recovery, and operational continuity across three principal areas: data strategy, people and processes, and technology. The research underpinning the DRMM presents several key insights. Seventy-four percent of organisations assessed were found to be operating at the two lowest levels of maturity, below best practices. Organisations at the highest maturity level - referred to as the 'Best-in-Class horizon' - were observed to recover from outages seven times faster, have three times less downtime, and sustain four times less data loss than those less mature. The report also found that over 30% of CIOs at the least resilient organisations overestimated their data resilience capabilities, potentially placing their businesses at greater risk. Eswaran elaborated on the implications of these findings: "Data resilience isn't just about protecting data, it's about protecting the entire business. This is the difference between shutting down operations during an outage or keeping the business running. It's the difference between paying a ransom or not. It provides the foundation for AI innovation, compliance, trust, and long-term performance – including competitive advantage." The development of the DRMM involved input from over 500 leaders in IT, security, and operations, and included more than 50 interviews with C-level executives. The model has already been validated through its application in real-world settings, such as a healthcare system that reported savings of $5 million per outage and a global bank that has had no cyber incidents since implementing the framework alongside Veeam's platform. Financial data from the DRMM research indicates that investments in data resilience can provide substantial returns. For each $1 invested in data resilience measures, companies have gained returns between $3 and $5, and sometimes as much as $10, attributed to factors such as increased system uptime, lower incident costs, and improved agility. This has resulted in data resilience becoming the second highest strategic priority for IT leaders, following cost optimisation. The DRMM defines four horizons of data resilience maturity: Basic, which is reactive and manual; Intermediate, characterised by reliability but lacking automation; Advanced, which is strategic and proactive but not fully integrated; and Best-in-Class, which is autonomous, AI-optimised, and fully resilient. George Westerman, Principal Research Scientist at the MIT Sloan School of Management, explained the significance of executive involvement in data resilience efforts. "As organisations increasingly recognise the growing risks associated with data outages and cyber threats, the report underscores the importance of a collective commitment from executives beyond the IT department, to data resilience. Data outages can severely impact customer-facing capabilities and erode shareholder trust of an organisation." "But even more, they can be a signal of immature IT management processes that have led to overly complex, hard to manage, IT infrastructure. The Digital Resilience Maturity Model highlights ways that businesses can equip themselves to handle today's challenges while being ready for tomorrow's opportunities." Organisations can begin assessing and advancing their data resilience maturity through tailored executive workshops provided by Veeam. These workshops are designed to support progress along the maturity curve, reduce risk exposure, and foster operational continuity. Veeam's report, produced in collaboration with McKinsey, is based on a detailed survey of 500 senior IT, information security, and operations leaders from large enterprises, supplemented by interviews with C-level executives and IT leaders. It emphasises the need for organisations to incorporate data resilience as part of their broader business strategy.
