Cybersecurity Expert: Why Backups Alone Are No Longer a Ransomware Strategy Hi! I'm writing an article for the ProLion blog on why backups alone are no longer a reliable ransomware strategy, and how attackers are now systematically targeting recovery systems before deploying their payload. I'm looking for cybersecurity experts (incident responders, CISOs, storage security specialists) who'd be willing to contribute a few quotes or insights. It would be great if you could answer 2+ of the questions below. Please also provide a link to your site and/or your LinkedIn profile if you'd like us to link out to them. 1. How often are you seeing ransomware attacks that specifically target backup and recovery systems? Is this a growing trend? 2. When a ransomware attack succeeds, how often is it because the organization's backups were also compromised? What's the typical scenario? 3. In your experience, do most organizations' backup strategies actually hold up under a real ransomware attack? Where do they tend to fall short? 4. Are attackers getting better at finding and disabling recovery infrastructure? 5. What are the most common techniques you're seeing attackers use to locate and disable backup systems — and how sophisticated do they need to be to pull it off? 6. Many organizations still treat backups as their ransomware insurance policy. What's the most dangerous assumption companies make about their backup strategy? 7. Can you walk us through a real-world scenario (anonymized if needed) where an organization had backups in place but still couldn't recover? 8. What's your take on the balance between prevention, detection, and recovery? Where do you see most companies underinvesting? 9. With AI making attacks faster and more adaptive, how do you expect backup-targeting tactics to evolve in the next 2–3 years? 10. If you could get one message across to a CISO who still thinks "we have backups, we're fine" what would it be?