LOS ANGELES, May 4, 2023 /PRNewswire/ -- IDrive Backup, an industry leading cloud backup service, has announced the addition of unlimited cloud to cloud backup, giving users the opportunity to backup and restore all of their Microsoft Office 365 and Google Workspace data.

For organizations and personal users that rely heavily on those cloud services, it's extremely important to have a second copy of their data stored elsewhere with an established and reliable backup company such as IDrive, as no service is immune to system failure and restores can then become very difficult.

Cloud to cloud backup with the award-winning IDrive allows users to backup their data from one cloud service to the IDrive cloud, making it an ideal solution for those who want to protect their data from potential loss due to service outages or other issues. This provides an extra layer of protection for important data by backing it up to an entirely separate cloud, keeping that data secure, recoverable, and accessible.

Backing up Microsoft Office 365 data with IDrive allows users to backup their entire Microsoft Office Suite including OneDrive, SharePoint, Exchange, and Teams data, unlike other backup services who only protect a limited amount of this data. By using this single backup solution approach, users can eliminate the complexity and costs associated with maintaining multiple separate backup agents.

Features of Microsoft Office 365 Backup with IDrive include:

For Google Workspace data, including Google Drive, Gmail, Calendar, and Contacts, using IDrive to backup this data can be critical to help safeguard it against accidental deletion, ransomware, or other outages or issues.

IDrive's intuitive data retention system with automatic snapshot schedules ensures safe retention of multiple versions of the backed up data, with 3 automatic daily backups that are retained for 30 days and enabling users to perform point-in-time restores.

Users also have full comprehensive control over their backups through a centralized web console, helping them to migrate, export, download, and perform cross-user restores with ease.

IDrive Cloud to Cloud Backup is an available add-on for all plans including Mini, Personal, Business, Team, and Enterprise for $20/seat/year for unlimited storage. IDrive Cloud to Cloud backup is also available as a stand-alone plan for the same cost.

About IDrive

IDrive Inc. is a privately held company specializing in cloud storage, online backup, file sharing, remote access, compliance and related technologies. Core services include IDrive, IDrivee2, RemotePC and IBackup. The company's services help over 4 million customers back up over 500 Petabytes of data.

View original content:https://www.prnewswire.com/news-releases/idrive-backup-adds-unlimited-cloud-to-cloud-backup-enabling-users-to-safeguard-all-of-their-microsoft-office-365--google-workspace-data-301815492.html

SOURCE IDrive Inc.

See the original post here:
IDrive Backup adds Unlimited Cloud to Cloud Backup, enabling ... - StreetInsider.com

So far, this year has been a big improvement over 2022, and investors can thank big technology stocks for the huge turnaround. Up 16.30% through Tuesday, the Nasdaq has trounced the 1.65% gain of the Dow Jones industrials and the S&P 500s 7.73% move higher.

The problem is that only a handful of top technology leaders have driven all of the gains so far, and that could be dangerous, as most are at or close to 52-week or all-time highs. While the move higher has been solid, the reality is that Apple and Microsoft have generated nearly 50% of the S&P 500 gains so far this year. If you add in the rest of the FANNG stocks Facebook (Meta), Amazon, Netflix, Nvidia and Google (Alphabet) the group has accounted for a stunning 94% of the index gains through April.

One good idea for growth investors looking to stay in the technology sector might be to take profits on the high-flyers and look at some old-school legacy technology companies that may be able to pick up the rally torch in May. We screened our 24/7 Wall St. technology universe searching for industry leaders that may offer solid upside potential and reliable dividends. That combination could provide some powerful total return potential for the rest of 2023, and seven top stocks made the cut.

It is important to remember that no single analyst report should be used as a sole basis for any buying or selling decision.

Investors who are more conservative may want to consider this mega-cap tech leader, which recently posted outstanding quarterly results. Cisco Systems Inc. (NASDAQ: CSCO) designs, manufactures and sells internet protocol (IP) based networking products and services related to the communications and information technology industry worldwide.

Cisco provides switching products, including fixed-configuration and modular switches, and storage products that provide connectivity to end users, workstations, IP phones, wireless access points and servers, as well as next-generation network routing products that interconnect public and private wireline and mobile networks for mobile, data, voice and video applications.

Its cybersecurity products give clients the scope, scale and capabilities to keep up with the complexity and volume of threats. Putting security above everything helps corporations innovate while keeping their assets safe.

The networking giant posted solid fiscal first-quarter results that beat earnings expectations, and it offered up strong forward guidance.

Shareholders receive a 3.30% dividend. Credit Suisse has an Outperform rating on Cisco Systems stock. The firms $69 target price compares with a $56.72 consensus target and Wednesdays close at $45.96.

This company continues to be a huge player in the fiber optic world.Corning Inc. (NYSE: GLW) is a technology pioneer that manufactures LCD glass for flat-panel displays for multiple product lines.

Its Display Technologies segment offers glass substrates for flat panel displays, including liquid crystal displays and organic light-emitting diodes that are used in televisions, notebook computers, desktop monitors, tablets and handheld devices.Cornings Optical Communications segment provides optical fibers and cables, as well as hardware and equipment products, such as cable assemblies, fiber optic hardware and connectors, optical components and couplers, closures, network interface devices and other accessories for the telecommunications industry, businesses, governments and individuals.

The Specialty Materials segment manufactures products that offer material formulations for glass, glass ceramics, crystals, precision metrology instruments and software, as well as glass wafers and substrates, tinted sunglasses and radiation shielding products for various markets comprising mobile consumer electronics, semiconductor equipment optics and consumables, aerospace and defense optics, radiation shielding products, sunglasses and telecommunications components.

Its Environmental Technologies segment provides ceramic substrates and filter products for emissions control in mobile, gasoline and diesel applications. And the companys Life Sciences segment offers laboratory products, including consumables, such as plastic vessels, liquid handling plastics, specialty surfaces, cell culture media and serum, as well as general labware, glassware and equipment under the Corning, Falcon, Pyrex and Axygen brands.

Corning stock comes with a 3.45% dividend. J.P. Morgans Overweight rating is accompanied by a $42 price target. The consensus target is $37.17, and shares closed on Wednesday at $31.67.

This high-quality company pays a solid dividend, but its shares have been hit hard. Dell Technologies Inc. (NYSE: DELL) designs, develops, manufactures, markets, sells and supports information technology (IT) hardware, software and services solutions worldwide. It operates through three segments.

Infrastructure Solutions Group provides traditional and next-generation storage solutions, and rack, blade, tower and hyperscale servers. It also offers networking products and services that help its business customers to transform and modernize their infrastructure, mobilize and enrich end-user experiences and accelerate business applications and processes. It also offers attached software and peripherals, as well as support and deployment, configuration and extended warranty services.

The Client Solutions Group offers desktops, notebooks and workstations; displays and projectors; attached and third-party software and peripherals; as well as support and deployment, configuration and extended warranty services.

The VMware segment supports customers in the areas of hybrid and multi-cloud, modern applications, networking, security and digital workspaces, helping customers to manage IT resources across private clouds and complex multi-cloud, multi-device environments.

Dell also provides information security and cloud software and infrastructure-as-a-service solutions that enable customers to migrate, run, and manage mission-critical applications in cloud-based IT environments.

Investors receive a 3.38% dividend. Morgan Stanleys $55 price target comes with an Overweight rating. Dell Technologies has a consensus target of $47.86. Wednesdays close was at $45.16.

IBM

This blue chip giant still offers investors who are more conservative an incredibly solid entry point, a massive dividend and a degree of safety. International Business Machines Corp. (NYSE: IBM) provides integrated solutions and services worldwide through these four business segments.

The Software segment offers hybrid cloud platform and software solutions, such as Red Hat, an enterprise open-source solutions; software for business automation, AIOps and management, integration, and application servers; data and artificial intelligence solutions; and security software and services for threat, data and identity. This segment also provides transaction processing software that supports clients mission-critical and on-premise workloads in banking, airlines and retail industries.

The Consulting segment offers business transformation services, including strategy, business process design and operations, data and analytics, and system integration services; technology consulting services; and application and cloud platform services.

The Infrastructure segment provides on-premises and cloud-based server and storage solutions for its clients mission-critical and regulated workloads; and support services and solutions for hybrid cloud infrastructure, as well as remanufacturing and remarketing services for used equipment.

The Financing segment offers lease, installment payment, loan financing and short-term working capital financing services.

The dividend yield here is 5.31%. The $162 Credit Suisse price target on the Outperform-rated stock is a Wall Street high. The $141.47 consensus target is closer to Wednesdays closing print of $123.45.

This is another familiar name that could offer among the best in total return potential. Juniper Networks Inc. (NYSE: JNPR) designs, develops and sells network products and services worldwide. The company offers various routing products, such as ACX series universal access routers to deploy new high-bandwidth services; MX series Ethernet routers that function as a universal edge platform; PTX series packet transport routers; and NorthStar controllers.

Juniper Networks also provides switching products, including EX series Ethernet switches to address the access, aggregation and core layer switching requirements of micro branch, branch office, and campus environments; QFX series of core, spine and top-of-rack data center switches; and Juniper access points, which provide wireless access and performance.

In addition, the company offers security products including SRX series services gateways for the data center; Branch SRX family provides an integrated firewall and next-generation firewall; virtual firewall that delivers various features of physical firewalls; and advanced malware protection, a cloud-based service and Juniper ATP.

Juniper Networks stock investors receive a 3.02% dividend. J.P. Morgan has an Overweight rating with a $42 price target. The consensus target is $36.31. The shares closed at $28.94 on Wednesday.

Seagate

This disk drive giant looks reasonable at current trading levels.Seagate Technology Holdings PLC (NASDAQ: STX) provides data storage technology and solutions in Singapore, the United States, the Netherlands and elsewhere.

The company offers hard disk and solid-state drives, including serial advanced technology attachment, serial attached SCSI and non-volatile memory express products; solid-state hybrid drives; and storage subsystems. Its products are used in enterprise servers and storage systems and edge compute and non-compute applications.

Seagate also provides an enterprise data solutions portfolio, comprising storage subsystems and mass capacity optimized private cloud storage solutions for enterprises, cloud service providers and scale-out storage servers and original equipment manufacturers. In addition, it offers external storage solutions under the Seagate Backup Plus and Expansion product lines, as well as under the LaCie and Maxtor brands in capacities up to 16 terabytes.

Shareholders enjoy a 4.78% dividend. TD Cowen has an Outperform rating and has set its price objective at $70. The consensus target is $62.50, and Seagate Technology stock closed on Wednesday at $58.36.

This old-school semiconductor company offers solid value at current levels and is a great pick for investors who are more conservative. Texas Instruments Inc. (NASDAQ: TXN) is a broad-based supplier of semiconductor components, ranging from digital signal processors to high-performance analog components, to digital light-processing technology and calculators.

Some 65% of the companys sales are exposed to the well-diversified, business-to-business industrial, automotive, communications infrastructure and enterprise markets. While business from those sectors, especially automotive, could suffer in the near term, the analyst feels the solid dividend should support the shares.

The company is also a big Apple supplier, so the long-term outlook for this venerable leader makes it a safer bet for investors with less risk tolerance.

Investors receive a 2.98% dividend. The analysts at Oppenheimer have an Outperform rating for Texas Instruments stock. Their $195 price target is higher than the $181.46 consensus target and the most recent close at $163.35.

Get Our Free Investment Newsletter

Sponsored: Tips for Investing

A financial advisor can help you understand the advantages and disadvantages of investment properties. Finding a qualified financial advisor doesnt have to be hard. SmartAssets free tool matches you with up to three financial advisors who serve your area, and you can interview your advisor matches at no cost to decide which one is right for you. If youre ready to find an advisor who can help you achieve your financial goals, get started now.

Investing in real estate can diversify your portfolio. But expanding your horizons may add additional costs. If youre an investor looking to minimize expenses,consider checking out online brokerages. They often offer low investment fees, helping you maximize your profit.

View post:
2023 Stock Market Gains Are Tech Driven: Take Profits Now and Move to Legacy Dividend Tech Stocks - 24/7 Wall St.

iDrive is trying something a little different in cloud backups: Backing up your entire Google Workspace or Microsoft 365 storage, for only $20 per year per computer.

Confused? Then lets, er, back up. IDrive is one of our most highly recommended cloud backup options, able to back up your PC to the cloud with either a free plan or paid options that go all the way to 20TB. Its basically one of the only good independent cloud storage/backup providers that isnt a major corporation like Google or Microsoft.

Due to be formally announced Thursday, IDrive will now offer unlimited cloud backup for both Google Workspace (Google Drive, Gmail, Calendar, and Contacts) and Office 365 (OneDrive, Exchange, SharePoint, and Teams), called Unlimited Cloud to Cloud Backup. What IDrive will do is back up all of your files in the Google or Microsoft cloud over to to IDrive as well. And if you pay for extra storage in either service, IDrive can accommodate all of those files.

Why do this? Its an additional layer of security for those who worry about cloud services going down and data being unable to accessed. It sounds a little far-fetched until you remember that Western Digitals cloud service was down for over a week. Thats why the rule of three exists: You should have your data stored in three places, just in case: a local copy and two backups. Thats what IDrive is offering.

IDrives Unlimited Cloud to Cloud Backup backs up data from the other clouds three times per day. It retains snapshots of previous versions, allowing you to restore your data from a given point in time and not just all of it at once. You can seek out and restore individual files and folders, too. IDrive considers this service to be an add-on, meaning that you can attach it to existing IDrive plans. (You can also buy Unlimited Cloud to Cloud Backup as a standalone service.)

IDrive seems to be pitching this as a solution for individuals, families or small businesses, since a demonstration video showed a backup of a Microsoft cloud with about twenty different users. The only catch, if there is one, is that IDrive charges the $20 annual fee (or roughly $1.66 per month) per computer for backing up one service, Google Drive or Microsoft Office 365.

Read more:
IDrive gets even better with unlimited backups of your Google ... - PCWorld

More and more organizations utilize cloud technology for applications, file storage, and more. However, if an attacker compromises a cloud environment, organizations may not know how to investigate those technologies, or may not even be logging the evidence that could allow the organization to identify what an attacker did.

This blog post describes a hypothetical scenario of a cloud platform compromise with multiple components that would require investigation. Each component is an example of a real intrusion tactic that Mandiant has investigated across various cloud platforms, sometimes with logs available and sometimes without logs available.

For each part of the compromise, we provide recommended logging configurations and investigation processes organized into cloud technology themes that group cloud services from Google Cloud Platform (GCP), Amazon Web Services (AWS), and Microsoft Azure together:

After reading through this scenario, you should be able to:

While we review many concepts, there are some limitations to be aware of in the scope of this post:

The attacker gained access to the Cloud Email platform through a credential stuffing attack against a cloud administrator account. Once the attacker found a valid password, the attacker authenticated with those credentials and the Cloud Email platform asked them which type of multi-factor authentication (MFA) process they preferred. The attacker chose the push option, which sent an approval request to the legitimate user. The administrator user deals with push authentication requests throughout the day for various services and mistakenly accepted the authentication request, which provided initial access to the attacker.

Once the attacker identified the cloud administrator credentials and authenticated, they logged in to the Cloud Management Console to identify other applications that the user could access.

The attacker identified that the cloud administrator account had access to the Cloud Authentication Services application and authenticated to it. In the Cloud Authentication Services application, the attacker changed the privileges of the cloud administrator to the highest global administrator account privileges available and removed the multi-factor requirement.

While in the Cloud Management Console, the attacker identified that the organization uses a custom Cloud Application. The attacker accessed the Cloud Code Repository with the global administrator account and identified the Cloud Application source code hosted there. The attacker accessed the code and identified plain-text hard-coded credentials for an application service account.

While in the Cloud Authentication Services application, the attacker identified that the Administrator had access to the Cloud Logging platform. The attacker authenticated to the Cloud Logging platform and searched logs for keywords related to plain-text credentials. The attacker exported logs that contained those keywords, particularly database user credentials.

The attacker returned to the cloud Authentication Service application and performed reconnaissance on systems and users. The attacker exported all environment objects including systems and accounts.

Next, the attacker pivoted to the Cloud Virtual Machine infrastructure and created a templated virtual machine. The attacker assigned the virtual machine to the application service account previously identified in the application source code. The attacker configured the Cloud Networking rules to allow remote desktop protocol (RDP) access from the internet. The application service account did not require MFA for any authentication activity because of its intended use. The attacker logged on to the virtual machine through RDP from their command and control (C2) server.

While logged on to the newly created virtual machine, the attacker identified a database server based on the hostname SQLDB01. The attacker moved laterally from the virtual machine they created to the database server via RDP using the application service account.

The attacker connected to the database, which utilized a Cloud Database Service backend, using the database user credentials previously identified in logs and explored the data by enumerating the table schema and running select * queries.

While logged on to the attacker-created virtual machine, the attacker also performed internal reconnaissance to identify other systems of interest. The attacker scanned the network for other systems using custom port scanning utilities that searched for open SSH, RPD, and SMB ports.

The attacker identified a network-shared file server that hosted files on a Cloud File Storage solution. After enumerating files stored on the network share, the attacker copied files to their C2 system using a bulk network file transfer utility.

While accessing the file server, the attacker also decided to stage further backdoors in trojanized files that are likely to be opened by users.

While logged on to cloud email for the administrator account, the attacker browsed through the last several days of messages. The attacker looked at email folders named finance and hr and downloaded attachments from sent messages.

The attacker shared the uploaded trojanized backdoor file through the collaboration platforms file sharing service with 20 users.

Several users messaged the administrators account and asked questions about errors opening the new document they downloaded through the collaboration platform based on an automated file shared email link. The attacker replied to tell the users the document is legitimate.

Finally, in an attempt to delay detection, the attacker created a mailbox rule to automatically delete replies to the compromised file share email.

The aforementioned hypothetical scenario took place in a matter of several days, reflecting how quickly the threat actors moved in the real scenarios this one is based on. In these cases, information security teams commonly have only a few medium priority alerts fire that go unnoticed due to the abundance of alerts feeding from their tools.

In this scenario, suspicion started when several helpdesk team members realized they had separate reports of users who had suspicious files shared with them. The helpdesk team escalated to Information Security per their documented processes and the Incident Response (IR) team started an investigation into the cloud file sharing platform associated with the file sharing.

The IR team quickly realized that the default logging available with their lowest cost license subscription recorded many useful logs such as:

Unfortunately, the investigation could not answer the question did the attacker access any email messages or synchronize any mailboxes? due to the default logging levels. The IR team also realized they were lucky the incident was detected relatively quickly because the default license subscription only stored logs for 90 days with their Cloud Logging platform.

After a post-mortem review several months later, the organization realized the IR team only reviewed collaboration platform authentications and did not cross reference against domain authentication logs. This meant that the internal team never identified that the attacker compromised the cloud infrastructure platform and performed follow-on activities such as creating and accessing a VM, elevating to domain administrator privileges, and interacting with file servers. They focused only the collaboration platform because the initial incident identification occurred after the sharing of files on the Collaboration Cloud File Sharing platform. The investigation had to be reopened several months later when evidence had started to disappear from Cloud Logging sources.

As the scenario demonstrates, attackers have a wider surface area to persist and steal data because of the adoption of cloud infrastructure and collaboration platforms. The move to these cloud platforms brings useful functionality and security features, but configuring everything correctly can be overwhelming for a team that is new to the technology.

Not only are there many access, permission, and protection configurations to consider, but teams should also make sure that they would be able to fully investigate various attacks that could happen by storing the correct logs.

Understanding what technologies your organization uses and performing threat modeling is one way to make sure you have these logs and investigative processes set up should you need to investigate.

For details on how Mandiant can assist with your cloud security, please check out the following resources:

The following attack path diagram visualizes how the actor accessed a wide range of cloud platforms from outside a standard perimeter in this scenario. The actor also used cloud technologies to interact with systems in the non-cloud environment as well through connections and integrations.

The following checklist is designed to be copied or printed for your cloud infrastructure logging review efforts. The provided logs are example categories of commonly utilized event logs for forensic investigations.

Reference Number

Technology

Log Type

1.1.1

Cloud Virtual Machines

Configure system event logs to follow standard endpoint logging policies for authentication, user activity, and privileged account use.

1.1.2

Cloud Virtual Machines

Log virtual machine management actions such as Start, pause, backup, snapshot, create, delete, and command executions etc.

1.1.3

Cloud Virtual Machines

Forward system logs to a log management platform or SEIM as part of standard polices and processes.

1.2.1

Applications or Functions

Log web server access to application including source IP address, protocol used, request parameters, response status, user agent, referrer, and response size. Ensure that source IP address is not overwritten by proxy or load balancer technology.

1.2.2

Cloud Applications, Containers, and Functions

Log creation, modification, and access to application code.

1.2.3

Cloud Applications, Containers, and Functions

Record successful and failed authentication activity including source IP address.

1.2.4

Cloud Applications, Containers, and Functions

Log application user activity including user account, information viewed, actions performed, and sensitive data accessed.

1.2.5

Cloud Applications, Containers, and Functions

Forward system logs to a log management platform or SEIM as part of standard polices and processes.

1.3.1

Cloud Database Services

Log database user authentication and source network address.

1.3.2

Cloud Database Services

Log data access including source network address and user.

1.3.3

Cloud Database Services

Log data modification and deletion including source network address and user.

1.3.4

Cloud Database Services

Forward system logs to a log management platform or SEIM as part of standard polices and processes.

1.3.5

Cloud Database Services

Log errors and long running queries, which could be indicative of data transfer or reconnaissance.

1.4.1

Cloud File Storage

Log user authentication.

1.4.2

Cloud File Storage

Log file creation, modification, upload, and deletion events with user account, IP address, and timestamp.

1.4.3

Cloud File Storage

Log file download events with user account, source IP address, and timestamp

1.4.4

Cloud File Storage

Log location, folder, and file permission changes.

1.4.5

Cloud File Storage

Log API access to file storage locations, folders, and files.

1.4.6

Cloud File Storage

Log file and directory listing metadata view.

1.4.7

Cloud File Storage

Turn on alerts for suspicious activity, including malware and mass downloads, if available.

1.5.1

Cloud Authentication Services

Log user authentication with timestamp, username, and source IP address.

1.5.2

View post:
Cloudy with a Chance of Bad Logs: Cloud Platform Log ... - Mandiant