Market Research
Veeam Research Finds Organizations are Increasing Modern Data Protection for Cloud Workloads to Reduce Cyber Security Risks
Veeam Software has released the findings of the company’s Cloud Protection Trends Report 2023, covering four key “as a Service” scenarios: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as a Service (SaaS), and Backup and Disaster Recovery as a Service (BaaS/DRaaS). The survey found that companies are recognizing the increasing need to protect their SaaS environments. For example, nearly 90% of Microsoft® 365 customers surveyed use supplemental measures rather than relying solely on built-in recovery capabilities. Preparing for a rapid recovery from cyber and ransomware attacks was the top cited reason for this backup, with regulatory compliance as the next most popular business driver.
Highlights of the report:
- While new IT workloads are launching in the cloud at far faster rates than old workloads are being decommissioned in the data center, a surprising 88% brought workloads from the cloud back to their data center for one or more reasons, including development, cost/performance optimization, and disaster recovery.
- With cybersecurity (including ransomware) continuing to be a critical concern, data protection strategies have evolved, and most organizations are delegating backup responsibilities to specialists, instead of requiring each workload (IaaS, SaaS, PaaS) owner to protect their own data. The majority of backups of cloud workloads are now being done by the backup team and no longer require the specialized expertise or added burden of cloud administrators.
- Today, 98% of organizations utilize a cloud-hosted infrastructure as part of their data protection strategy. DRaaS is perceived as surpassing the tactical benefits of BaaS by providing expertise around Business Continuity and Disaster Recovery(BCDR) planning, implementation, and testing. Expertise is recognized as a primary differentiator by subscribers choosing their BaaS/DRaaS provider, based on business acumen, technical IT recovery architects, and operational assistance in planning and documentation of BCDR strategies.
- Unfortunately, as is often the case for new cloud-hosted architectures, some PaaS administrators are incorrectly presuming that the native durability of cloud-hosted services relieves the need for backup: 34% of organizations do not yet back up their cloud-hosted file shares, and 15% do not back up their cloud-hosted databases.
“The growing adoption of cloud-powered tools and services, escalated by the massive shift to remote work and current hybrid work environments, put a spotlight on hybrid IT and data protection strategies across industries,” said Danny Allan, CTO and Senior Vice President of Product Strategy at Veeam. “As cybersecurity threats continue to increase, organizations must look beyond traditional backup services and build a purposeful approach that best suits their business needs and cloud strategy. This survey shows that workloads continue to fluidly move from data centers to clouds and back again, as well as from one cloud to another — creating even more complexity in data protection strategy. The results of this survey show that while modern IT enterprises have made significant strides in cloud and data protection, there is still work to be done.”
The Veeam Cloud Protection Trends Report 2023 findings include:
Software as a Service (SaaS):
- 90% of organizations realize they need to back up Microsoft 365. The report revealed only 1 in 9 (11%) organizations do not protect their Microsoft 365 data — a promising majority of 89% use third-party backups/BaaS or enhanced tiers of Microsoft 365 for legal hold, or both.
- As data protection strategies have evolved and ransomware continues to be a top concern, most organizations are delegating backup responsibilities to backup specialists, instead of requiring each workload (IaaS, SaaS, PaaS) owner to protect their own data. This fuels the progression of backup becoming a conventional component tasked to the traditional backup admin versus the application team.
Infrastructure as a Service (IaaS): While organizations of all sizes now embrace hybrid-cloud architectures, it is not a one-way journey to the cloud that reduces the importance of the modern data center.
- 30% of cloud-hosted workloads were from “cloud first” strategies, whereby new workloads are starting in clouds at far faster rates than old workloads are being decommissioned in the data center.
- 98% of organizations utilize a cloud-hosted infrastructure as part of their data protection strategy, including cloud-storage tiers, cloud infrastructure as their disaster recovery site, or the use of BaaS/DRaaS providers.
- 88% of organizations brought workloads from the cloud back to their data center for one or more reasons (development, cost/performance optimization, or disaster recovery) — highlighting a need for 2023 data protection strategies to ensure consistent protection and the ability to migrate, as workloads move from the data center to cloud, cloud to the data center, or from one cloud to another cloud.
- The majority of backups of cloud workloads are now being done by the backup team and no longer require the specialized expertise or added burden of cloud administrators. However, while nearly every organization acknowledged having long-term regulatory mandates, only half of organizations retain backups of their cloud data for even one year.
Platform as a Service (PaaS): While most organizations initially “lift and shift” servers from the data center to IaaS, most agree that running foundational IT scenarios, such as file shares or databases, as native cloud services is the future for mature IT workloads:
- 76% run file services within cloud-hosted servers and 56% run managed file shares from AWS or Microsoft Azure
- 78% run databases within cloud-hosted servers and 65% run managed databases from AWS or Microsoft Azure
Backup and Disaster Recovery as a Service (BaaS/DRaaS): Nearly every IaaS/SaaS environment also utilizes cloud services as part of its data protection strategy in some form.
- 58% of organizations utilize managed backup (BaaS) compared to the 42% that utilize cloud storage as part of their self-managed data protection solution. Of special interest, nearly half(48%) started with self-managed cloud storage but eventually switched to BaaS.
- Nearly every organization (98%) claims to use cloud services as part of their data protection strategy, though that varies from cloud storage as a repository to full-fledged BaaS or DRaaS services.
- BaaS is predominantly sought for gaining operational and economic efficiencies, as well as assuring data survivability from disasters and ransomware attacks. It is notable that BaaS is no longer seen as the “tape killer” that early pundits offered, with organizations stating that nearly 50% of their data is still stored on tape during its lifecycle, regardless of their use of cloud-based data protection services.
- DRaaS is perceived as surpassing the tactical benefits of BaaS by providing expertise around BCDR planning, implementation, and testing. Expertise is perceived as a primary differentiator by subscribers choosing their BaaS/DRaaS provider, based on business acumen, technical IT recovery architects, and operational assistance in planning and documentation of BCDR strategies.
This year’s report showed a significant shift from last year as customers are increasingly interested in outsourcing their backups and gaining a “turnkey” or “white-glove” level of management service instead of the internal IT staff continuing to manage BaaS-delivered infrastructure. This shift indicates that experience and trust in providers are increasing and could also point to challenges over the past year with the IT talent supply chain.
The Veeam Cloud Protection Trends Report 2023, born from the annual Veeam Data Protection Trends Report, is the result of a third-party research firm that surveyed 1,700 unbiased IT leaders from 7 countries (US, UK, France, Germany, Japan, Australia, New Zealand) on their use of cloud services in both production and protection scenarios to deliver the largest single view into the trajectory of hybrid strategies across the modern IT enterprise in today’s cloud-first digital landscape. The broad-based market study was conducted to understand the various perspectives on responsibilities and methodologies related to operating and protecting cloud-hosted workloads, and considerations when using cloud-powered data protection.
Cyber Security
One-Third of UAE Children Play Age-Inappropriate Computer Games
According to a recent survey conducted by Kaspersky in collaboration with the UAE Cyber Security Council, more than a third of parents surveyed (33%) across the UAE, believe that their children play games that are inappropriate for their age. Based on the survey, boys are more prone to such behaviour than girls – 50% and 43% of children respectively have violated age guidelines when playing games on their computers.
It’s possible that parents tend to exaggerate the problem of violating age restrictions in computer games, or children are not always aware of these restrictions: according to the children themselves, only 30% confessed that they had ever played games that were not suitable for their age. Girls are more obedient to age restrictions of video games, with 78% having never played inappropriate games, while for boys it is 64%.
Playing computer games is a common way for youngsters to spend their free time (91%). Half of them use smartphones for gaming (52%), and the second place is taken by computers (40%). Based on parents’ estimates, 41% of children play video games every day. “Parents often worry that their children spend too much time playing computer games. Of course, it is important to ensure that the child follows a routine, gets enough sleep, takes a break from the screen, and is physically active, however, parents should not blame computer games for everything”, comments Seifallah Jedidi, Head of Consumer Channel for the META at Kaspersky. “Parents should take a proactive position in this area, be interested in the latest products offered by the video game industry, and, of course, understand their children’s gaming preferences and pay attention to the age limits marking. It’s worth mentioning that today, there is a wide variety of games on offer, many of which include educational materials, and so we recommend not to prohibit this type of leisure, but rather to seek a compromise.”
To keep children safe online, Kaspersky recommends that parents:
- Pursue interest in what games your children play. Ideally, you should try those games yourself. This will help build more trust in your family relationships and help you to understand what your child is interested in.
- If you notice that your child plays a lot, try to analyze the reasons for this and also answer the question of whether they have an alternative that they like, ask what they would like to do besides gaming and try to engage them with another interesting hobby.
- Be informed about current cyber threats and talk to your children about the risks they may face online; teach them how to resist online threats and recognize the tricks of scammers.
- Use a parental control program on your child’s device. It will allow you to control the applications downloaded on the device or set a schedule for when these applications can be used.
The survey entitled “Growing Up Online” was conducted by Toluna Research Agency at the request of Kaspersky in 2023-2024. The study sample included 2000 online interviews (1000 parent-child pairs, with children aged 3 to 17 years) in the UAE.
Cloud
SolarWinds Survey: Only 18% of IT Professionals Satisfied with Cloud Infrastructure
According to new data from SolarWinds, less than one in five (18%) IT professionals believe their present cloud infrastructure satisfies their business needs, indicating a large disconnect between expectations and reality when it comes to cloud adoption. The research, based on a survey of 272 global IT professionals, shows that despite the cloud’s promises of scalability and cost savings, the reality is mixed for many IT teams: only a quarter of those surveyed (25%) feel their organisation’s approach to the cloud is carefully considered and successful, while 23% admit their hybrid cloud strategy has created an overly complex IT environment. Despite this, less than a quarter (22%) of respondents have invested in external IT services to help with their cloud migration strategy.
In response to these cloud challenges, more than one in ten (16%) respondents have already repatriated workloads back to on-premises. Meanwhile, a further 12% acknowledge that poorly planned cloud transitions have already resulted in long-term financial impacts on their organisations. This goes to show that rushed cloud migrations can lead to costly fixes or reversals.
The data also indicates a lack of trust in cloud security, with nearly half (46%) of IT pros still storing their most sensitive data on-premises due to persistent security worries. However, the findings do highlight a continued focus on cloud strategies to reduce costs. Nearly a third (29%) of respondents say they are prioritising cloud migration to cut operational costs.
Commenting on the findings, Sascha Giese, Global Tech Evangelist at SolarWinds, said, “The truth is, managing complex hybrid-cloud ecosystems isn’t easy. While the cloud promises scalability and cost savings, the gap between expectation and execution is becoming increasingly evident. In this landscape, many businesses find themselves grappling with overly complex infrastructures that struggle to meet evolving needs.”
In a hybrid cloud world with increasingly complex networks, systems, devices, and applications, managing microservices and containers adds to the challenge. Without proper planning and comprehensive visibility, organisations risk finding themselves in a dire situation. Tool sprawl, information silos, and alert fatigue can all lead to an unpleasant cloud experience, making it harder to identify the root causes of complex issues.
“To overcome these challenges, IT leaders must adopt a more strategic and informed approach to cloud migration, focusing on tools that are reliable, secure, and accelerate modernisation. One key advantage businesses can leverage to successfully manage their hybrid cloud infrastructures is comprehensive observability. That means gaining real-time visibility into every layer of the IT estate and acting proactively with the assistance of machine learning algorithms and AI-driven analytics. Cloud infrastructure can be a powerful growth enabler, but with a mess of mismatched tools and poor visibility, it will be a bumpy ride,” added Giese.
Cyber Security
Middle East Companies Strengthen Cybersecurity with Essential Employee Training
Over 155,000 vulnerable assets have been identified within the UAE, according to recent reports from the UAE Cybersecurity Council. This alarming figure reflects the growing cybersecurity risks in the Middle East, driven by geopolitical factors, increased migration, and the region’s expanding digital presence. In addition to these vulnerabilities, advanced threats like ransomware are rising. In 2024, Saudi Arabia reported 11 ransomware incidents in 2024, up from 10 in 2023, Lebanon saw an increase from 2 to 7 cases, and Oman reported 4. These incidents highlight the urgent need for comprehensive cybersecurity education.
Human error is a major contributor to cyberattacks, yet a recent PwC survey reveals that only 37% of organizations in the Middle East have implemented strong training and awareness programs for their employees. Acronis, a global leader in cybersecurity and data protection, has reported that partners who completed training and certification under the Acronis Academy program experienced higher revenue growth from product sales and fewer IT support requests from customers than non-certified partners. These findings are based on certification training data and sales metrics achieved by its partners.
Acronis launched the MSP Academy in 2023 to offer specialised MSP training, supporting the growing base of managed service providers. Data from their certification training revealed that partners who completed certification training saw an average 60% increase in revenue and a 40% reduction in incident resolution reports. “The Acronis MSP Academy modules cover essential areas including managed services, cybersecurity, and marketing, all of which are particularly relevant to the growing demands in the Middle East,” says Ziad Nasr, General Manager of Acronis Middle East, “By completing these courses, MSPs in the region can enhance their expertise in cybersecurity, deliver exceptional services to clients, and strengthen their reputation in a rapidly evolving market.”
In 2025, emerging cyber threats like deepfake technology and AI-generated phishing emails are expected to evolve, with attackers increasingly exploiting vulnerabilities as businesses and government agencies rely more on digital communication. Cybercriminals may impersonate executives or government officials using deepfake audio or video, making these attacks difficult to detect. These advanced threats are often beyond public awareness and can only be effectively identified if proper training and awareness programs are in place to help individuals recognize and defend against them.
-
News1 week ago
CyberKnight Appoints Regional Sales Director for the Gulf Region
-
Cyber Security1 week ago
The Human Factor: Why Cybersecurity is as Much About People as Technology
-
Cyber Security6 days ago
One-Third of UAE Children Play Age-Inappropriate Computer Games
-
Intersec2 days ago
Enhancing Global Security: How Motorola Solutions is Meeting Modern Safety Challenges
-
Cyber Security2 days ago
Group-IB Joins Cybercrime Atlas at WEF to Combat Global Cybercrime
-
Intersec3 days ago
Milestone Systems Outpaces Global VMS Market
-
Intersec5 days ago
Video Interview: Exploring the Future of Data
-
Cyber Security3 days ago
ESET Research Discovers UEFI Secure Boot Bypass Vulnerability