Latest News

Druva Introduces the Industry’s First and Only Curated Recovery Technology For Accelerated Ransomware Recovery

Druva Inc., the leader in Cloud Data Protection and Management, today introduced the industry’s first and only curated recovery technology, leveraging intelligent automation, for accelerated ransomware recovery. Adding to Druva’s ground-breaking Accelerated Ransomware Recovery module, Druva Curated Recovery mitigates the impact of a ransomware attack, building an uncorrupted, unencrypted and malware-free recovery point to ensure a successful recovery before one is ever initiated. Combining this comprehensive ransomware recovery module with Druva’s built-in security framework, businesses can now better protect critical data and recover faster with confidence.

Ransomware is one of the most popular methods used by hackers and malicious actors, and the average ransomware payment has surpassed $240,000 according to a new survey from IDC¹. Its lucrative nature has incentivized bad actors to expand the scope of their attacks, including the introduction of new variants designed specifically to encrypt or delete backup data, destroying organizations’ last line of defense and further incentivizing payment.

Traditional recovery from such an attack requires identifying a single point in time prior to the infection. However, because ransomware often enters a system months before it is detected, administrators are often forced to manually search for the most recent, unaffected versions of individual files or data sets. Now, by reviewing a comprehensive set of recovery points, Druva Curated Recovery can help identify the latest clean version of each file through recent changes, replacing a weeks-long, resource-intensive process with a radically simplified recovery workflow. Using Druva’s intelligent automation platform, IT teams can easily find the most recent clean version of all their data and return operations to normal faster.

“Being the victim of a ransomware attack doesn’t need to be a choice between paying an exorbitant ransom or halting operations while IT teams go through an intensive, manual recovery process,” said Jaspreet Singh, founder and CEO, Druva. “There’s no compelling reason to be held hostage by ineffective data protection technology. With our newest capabilities, every customer can gain the peace of mind of restoring their data with confidence.”

In addition to Druva’s Accelerated Ransomware Recovery, the Druva Cloud Platform offers a built-in security framework and multi-layer approach which is designed to be resilient against ransomware. The platform’s zero trust architecture ensures only customers have access to their data, while features such as excess deletion prevention stops ransomware from permanently deleting backups.

Learn more about Druva Curated Recovery at the Druva Cyber Resilience Virtual Summit on Oct. 13, where attendees will have the opportunity to hear from thought leaders and peers about how organizations are fighting back against increasingly sophisticated cyberattacks. Attendees will leave with actionable information on emerging best practices that span data protection and recovery and how to integrate modern security and backup technologies.


From Our Customers and Partners on the Front Lines of Protecting Organizational Data


Technologent is the premier Global Edge-to-Edge™ IT Services company that delivers agile solutions for accelerating digital transformation.

“The threat of ransomware is not something we, or our customers can afford to ignore, thus we continue to evaluate technologies to ensure we have the best solutions to offer our clients,” said Juan Gomez, Director of Data Management and Protection at Technologent. “Data protection and Security are converging, and in our evaluations, Druva’s architecture clearly sets it apart, and its ransomware recovery capabilities are outstanding. The Druva Curated Recovery is innovative, and we are eager to help our clients take advantage of this new capability.”


CDL Electric, founded in 1964, operates in the trades, railroad, and manufacturing sectors serving over 50,000 customers in over 40 states.

“Many years ago, we fell victim to a ransomware attack, which disrupted our operations, but more importantly served as a pivotal moment in the rethinking of our security and operations,” said Hugo Flores, Director, Information Technology & Special Projects, CDL Electric. “In that first instance, without any insights, we restored the data and also brought back the ransomware, forcing us to restart the whole process. At our current size, such an event would have a catastrophic impact on our organization. With technologies like Druva, with its ability to rapidly recover, we are confident we can minimize such disruptions and get back to business quickly.”


Build Group is a San Francisco-based general contracting company that takes on all aspects of construction from structural design and foundations to interiors and finish work.


“Ransomware can sit in systems undetected for weeks or months at a time, making it incredibly difficult to recover with clean, uninfected files,” said Adam Kailian, IT Systems Administrator, Build Group. “Druva Curated Recovery gives us the peace of mind that we have clean backups readily available if we ever need to restore from a ransomware attack. Combined with the fact that Druva can also help us quickly identify anomalies in our backups, brings a lot of value to our organization.”


About Accelerated Ransomware Recovery

Druva’s Accelerated Ransomware Recovery brings Druva Cloud Platform customers powerful capabilities to reduce data loss via intelligent automation and orchestration, as well as integrations with security information and event management (SIEM) and security orchestration, automation and response (SOAR) tools:

  • Access Insights: Understand location and identity for all access attempts to gain situational awareness
  • Anomaly Detection: Gain data-level insights on file changes, creation, recovery, and deletion. Users can create alerts for anomalous activity and use anomaly information to identify the timeframe of an attack
  • Quarantine: Quickly quarantine infected systems and snapshots
  • Recovery Scans: Scan snapshots for known malware and customer-provided indicators of compromise before restoring to avoid reinfection
  • Curated Snapshots: Automatically recover the most recent clean version of every file within a specified time frame, dramatically reducing recovery time


Additional Information

  • Infographic: Learn more about the state of ransomware and how Druva helps businesses recover with confidence
  • Blog: Read more technical details about the new Druva Curated Recovery
  • Register: for Druva Cyber Resilience Summit 2021 (North America, EMEA, APAC) and view the session details and speaker biographies


About Druva Cloud Platform

Built for the public cloud with a microservices architecture, Druva Cloud Platform is secure by design, always up-to-date, and offers all-inclusive, consumption-based pricing. As the industry’s largest cloud-native SaaS platform operating at scale, Druva Cloud Platform enables organizations to centrally protect data, no matter where it lives: cloud environments, leading SaaS applications such as Microsoft 365, Google Workspace and Salesforce, hybrid environments, or edge devices. By leveraging this innovative SaaS platform, organizations can reduce the cost and complexity of data protection, accelerate and protect cloud projects and increase cyber resilience and regulatory compliance.


About Druva

Druva delivers Data Protection and Management for the cloud era. Druva Cloud Platform is built on AWS and offered as-a-Service; and its customers have driven down costs by up to 50 percent by freeing themselves from the burden of unnecessary hardware, capacity planning, and software management. Druva is trusted by thousands of companies worldwide, including over 50 of the Fortune 500. Druva is a privately held company headquartered in Sunnyvale, California and its investors include Sequoia Capital, Viking Global Investors, CDPQ, Neuberger Berman, Tenaya Capital, Riverwood Capital and Nexus Partners. Visit and follow us on LinkedIn, Twitter and Facebook.


¹ IDC, IDC 2021 Ransomware Study: Where You Are Matters!, Doc US48093721. Published 20 July 2021.