As ransomware and malware tactics evolve, your defenses must evolve just as quickly. Bad actors are after your secondary data. Immutable backups are your last line of defense once all other security measures have failed. That’s why Cohesity is leading the charge to protect and secure your data with a full suite of cyber resilience capabilities, including threat detection, forensic investigation, and secure recovery.
One exciting new development on this front: performing tried-and-true threat testing and running ransomware simulations on GA code on more of the Cohesity Data Cloud.
Now validating Cohesity DataProtect in REDLab
To deepen our commitment, we’ve expanded the scope of Cohesity REDLab, our proprietary lab, to include Cohesity DataProtect. REDLab is where we rigorously test the real-world resilience of our products using live malware, advanced exploits, and modern attack techniques. Our REDLab is an air-gapped environment designed to allow full-spectrum threat testing while protecting Cohesity infrastructure.
For IT and security leaders, this means confidence that your backup and recovery solutions have been tested to deliver the highest levels of data security. They’re hardened and tested components of your cybersecurity strategy.
Since REDLab was built in early 2023, the focus has been on validating Cohesity NetBackup software and NetBackup appliances. With the addition of DataProtect, we’re raising the bar—ensuring that more of our platform is hardened against advanced threats before they reach your environment.
We now continuously validate DataProtect’s product security posture—and will expand to include threat detection and threat hunting in the future—all under real-world and fully isolated conditions.
Inside REDLab: Real-world rigor for real-world threats
What makes REDLab unique is its realism and rigor. Our dedicated team of security researchers and engineers exchange threat intelligence with leading agencies like the Joint Cyber Defense Collaborative (JCDC), a consortium of federal government, private and international partners led in the U.S. by the Cybersecurity and Infrastructure Security Agency (CISA), the Cohesity Data Security Alliance, and the broader open-source community.
Our REDLab team collects real malware and exploit kits from global honeypots, sandboxes, and intelligence feeds. Then it conducts both static and dynamic analysis, including detonating malware against Cohesity products in controlled environments. By analyzing and mapping malware kill chains, our REDLab team curates and fine-tunes detection mechanisms, including YARA rules, indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and file hashes. Their work also involves benchmarking detection accuracy, response speed, and recovery performance.
The valuable insights from this hands-on work, combined with product telemetry, help curate threat feeds that power security capabilities across both DataProtect and NetBackup. Whether you’re a customer of NetBackup or DataProtect, you can benefit from industry-leading ransomware protection.
Fueling a more cyber-resilient future: Sharing threat research
We believe in strengthening the broader cyber community. So, we’ll continue to regularly publish our findings, in-depth malware analysis, and recommendations for prevention and remediation based on REDLab validation to help IT and security teams stay ahead of evolving threats.
Our REDLab mission is simple: build products that are not only resilient by design, but resilient by validation—under the harshest conditions we can throw at them.
Learn more:
- Visit cohesity.com/redlab
- Get the eBook: The 5 critical steps to improve your organization’s cyber resilience
- Get our white paper: How to formulate a “wartime” response strategy to destructive cyberattacks
