Rubrik Upgrades Data Protection Platform for Speedier Threat Hunting

Data security specialist Rubrik is upgrading its data protection platform to allow for quicker recoveries in the familiar backup & recovery process. The new Turbo Threat Hunting functionality more quickly scans an enterprise network to find clean recovery points after malware attacks, according to the company.

The new approach changes the current method that requires mounting and scanning data on a file-by-file basis to find signs of tampering, instead leveraging other techniques — including pre-computed hash values within Rubrik's metadata — that significantly speed up the process.

"Traditional recovery methods involve manually scanning each backup file, which can take an excruciatingly long time. Imagine having to sift through hundreds of thousands of backups to locate clean recovery points. For many organizations, that process can take days or even weeks, leaving them vulnerable to ongoing disruption and significant financial losses," the company said in a blog post. By contrast, the new tech reduces the time to find a backup that is free from Indicators of Compromise (IOCs) "from days to mere seconds."

In addition to those pre-computed hashes for instant scanning, other highlights of the upgrade include:

  • Automated Threat Hunts: During an incident, users input known malware indicators, and Rubrik's Turbo Threat Hunting feature will scan an entire backup environment to find unaffected recovery points.
  • Cluster-Level Scanning: Instead of tediously selecting individual servers or backups, users can scan entire clusters with a single click, speeding up the search for clean recovery points.
  • Quick Results: In a recent internal test, Turbo Threat Hunting scanned an estimated 75,000 backups within 60 seconds, identifying the one affected server and enabling a quick path to recovery.
  • Quarantining: Automatically quarantine impacted files and backups to ensure the attacker is not re-introduced into the environment.
  • Recovery Orchestration: Mass-recovery orchestration of all backups from the most recent non-anomalylous, non-quarentined backup in just a few clicks to massively reduce the recovery time objective of the data and applications.

The upgrade is being rolled out automatically around the end of January to Enterprise Edition and cloud customers.

For more information, visit the Rubrik site.

About the Author

David Ramel is an editor and writer at Converge 360.

Featured

  • consumer electronic devices—laptop, tablet, smartphone, and smart speaker—on a wooden surface with glowing AI icons hovering above

    OpenAI to Acquire Io, Plans Consumer AI Hardware Push

    OpenAI has announced plans to acquire io, an artificial intelligence hardware startup co-founded by former Apple design chief Jony Ive. The deal is aimed at creating a dedicated division for the development of AI-powered consumer devices.

  • laptop with AI symbol on screen

    Google Launches Lightweight Gemma 3n, Expanding Edge AI Efforts

    Google DeepMind has officially launched Gemma 3n, the latest version of its lightweight generative AI model designed specifically for mobile and edge devices — a move that reinforces the company's emphasis on on-device computing.

  • central cloud platform connected to various AI icons—including a brain, robot, and network nodes

    Linux Foundation to Host Protocol for AI Agent Interoperability

    The Linux Foundation has announced it will host the Agent2Agent (A2A) protocol project, an open standard originally developed by Google to support secure communication and interoperability among AI agents.

  • teenager’s study desk with a laptop displaying an AI symbol, surrounded by books, headphones, a notebook, and a cup of colorful pencils

    Survey: Student AI Use on the Rise

    Ninety-three percent of students across the United States have used AI at least once or twice for school-related purposes, according to the latest AI in Education report from Microsoft.