1. Help Center
  2. Product Updates

Introducing Backup Data Insights for Google Workspace Backup

SysCloud’s latest backup data insights feature for Google Workspace can identify ransomware and phishing threats, the presence of sensitive data, and compliance violations in your backup archives.

Ransomware

SysCloud inspects the Google Drive backup archive and flags the presence of a variety of ransomware files. These include: 

Batch program: The batch program contains batch scripts with a known attack history that can potentially alter device configuration.

Executable: Executables are files that contain malicious scripts with a known attack history that can potentially infect the device or network by running in the background.

Macro enabled: Macro enabled files are the Microsoft files such as Excel, Word, and PowerPoint with macros that may include malware.

Click here to learn how to enable ransomware detection for your SysCloud backup.  

Phishing

SysCloud inspects and flags the presence of phishing emails in the Gmail backup archives. 

SysCloud can detect the following types of phishing attacks:

Brand impersonation attack: Hackers send out emails that mimic a  trusted brand, a well-known bank, credit card company, e-commerce site, or even a government agency. 

Domain spoofing attack: Hackers impersonate brands by buying domains that resemble the domains of a well-known brand. Eg: fedexcares.com can be used to impersonate fedexcare.com.

OAuth attack: OAuth attacks involve phishing emails that target the authorization tokens by loading a malicious application URL into an email. Clicking on that URL will allow access to the Google account via the OAuth protocol.

Account takeover attack: Account takeover attacks are related to identity theft where attackers gain access to a user’s online credentials using fake URLs loaded in an email or in attachments.

Mass phishing attack: Clones of transactional emails (receipts, gift cards, etc) with malicious links are sent as emails to groups of people with common interests and based on their brand preferences and demographics. 

Spear phishing: Targeting a specific user in your domain, these attacks are a greater risk to your organization because the hackers research the social profile of the target to improve their chances. 

Whaling: This phishing technique targets C-suite roles like CEO, CFO, COO, or other senior management positions.

Click here to learn how to enable phishing detection for your SysCloud backup.

Compliance

SysCloud scans backup archives of Google Drive, Gmail, and Sites for a variety of compliance gaps. 

PCI: SysCloud checks for sensitive information related to debit cards, credit cards, prepaid cards, e-purse, ATM, and POS devices. 

HIPAA: SysCloud flags keywords that might contain health-related information from medical records, lab reports, health history, medical bills, to name a few. 

Sensitive Auth Data: SysCloud flags the presence of sensitive information which – if disclosed – could cause financial loss, harm the reputation, or create legal issues for the business.

Confidential Data: SysCloud flags the presence of confidential information such as trade secrets, new product plans, notes associated with patentable inventions, customer or supplier information, financial data, or any other classified documents. 

For educational institutions, SysCloud can detect a number of issues that pertain to student privacy and related regulations.

FERPA: SysCloud scans the backup archives and flags the presence of certain keywords that might be in violation of the Family Educational Rights and Privacy Act by revealing or exposing confidential information.

Objectionable Content: SysCloud flags the presence of offensive language (such as swear words or abusive words) in the backup archives. 

Movies and Audio filter: SysCloud can detect the presence of video or audio files in the backup archives to stop piracy. Note: SysCloud also allows administrators to stop backing up movies and audio files. Click here to learn more.

Individual Education Plan: SysCloud flags the presence of information related to students who receive special education. 

Confidential Data: SysCloud flags the presence of confidential or personal information related to students, staff or teachers, or any other classified documents.

Click here to learn how to enable compliance violation detection for your SysCloud backup.