Qumulo and Superna Collaborate on Real-Time Ransomware Protection

Qumulo, the simple way to manage exabyte-scale data anywhere, is releasing Superna Data Security Edition for Qumulo, making Superna’s industry-leading Ransomware Defender solution available to automate real-time detection of malicious behaviors, false-positives, and other events consistent with ransomware access patterns for both SMB and NFS files.

“The problem with existing ransomware solutions is they focus only on the protect and recover aspects leaving customers with painful, costly and disruptive recovery times,” said Brandon Whitelaw, VP strategic partnerships at Qumulo. “Because Superna Ransomware Defender for Qumulo operates at the data layer, it can detect and block ransomware attacks before they proceed beyond the point of no return.”

Superna Data Security Edition for Qumulo not only detects malicious behavior at the onset (often referred to as the ‘burrowing event’) but also automates access lockout, according to the companies.

Superna’s native integrations with SIEM, SOAR, and ticketing platforms automatically alerts administrators and other users involved in incident response, providing them with the information required to accurately prioritize the incident.

“At Superna, we believe securing your data should be simple. We start with best-in-class data layer security, augmented with operational simplicity…  getting security incident root cause directly to your security operations team’s monitoring tool of choice. Superna’s native integrations with leading security tools like Palo Alto, ServiceNow, SentinelOne, Splunk, Rapid7 and others, eliminates having to train security teams on storage layer security, allowing them to focus on higher-value activities” said Andrew MacKay, chief technology and strategy officer at Superna.

While ransomware defense is one of the most notable features of Superna Data Security Edition for Qumulo, the solution protects against other untrusted or malicious data behaviors at the storage layer, including:

  • Burrowing event detection
  • Malicious user activity identification
  • Automated compliance self-test

Superna tracks and reports on file access history prior to the attack, providing more effective incident analysis and more accurate incident response, according to the companies. This means file- or object-level recovery happens in just minutes or even seconds, instead of traditional backup recovery requiring hours or days.

Finally, Superna Data Security Edition for Qumulo provides post-breach analysis for compliance and forensics.

The Superna Data Security Edition provides a holistic approach for cybersecurity at the storage layer that Identifies, protects, detects, responds, and recovers in accordance with the National Institute of Standards and Technology (NIST) cybersecurity framework. 

For more information about this news, visit or