UpdraftPlus Backup deleted from hacker
-
I love the plugin. It makes it really easy to backup and restore. My concerns are:
– What happens if a hacker gets the WP admin pass, logs ind deletes the backups and then the current WP install? How can we prevent that?
– If a hacker gains access to Cpanel, and delete the files. How do we restore the site?
-
To prevent a hacker from deleting your backups, change passwords as frequently as you care to, using the random password generators in both WP and cPanel, and then save those to a password manager, like ‘Keychain’, in the case of a Mac. There are other password manager options for Windows. Also consider using a security plugin like Wordfence, if you haven’t already.
But most importantly, don’t keep the only copy of your backups on the same server as your site. Think eggs in a basket.
You can set UD to upload your backups to a remote site like Google Drive or Dropbox. You can also subsequently download to your computer a copy of your backups directly from your remote site of choice, or from your site using FTP. Your ability to download to your own computer will be affected by the size of your site and/or your local internet connection. Whereas UD will automatically send the backups directly to remote storage regardless of your local connection by first zipping the files and uploading in chunks to avoid timeouts.
Depending on your hosting account storage space, you can tell UD to keep a copy of your backups on your server. This makes for a quicker restore, if like me, you accidentally delete something. But it is highly recommended to send a copy elsewhere for the very valid reason/concerns you have just mentioned.
If a hacker gets in, or your host/server goes bang, it’s just a question of installing a fresh copy of WordPress, on the same domain, with any random user credentials and installing a fresh UpdraftPlus and either uploading from your computer the backup files you downloaded, or telling UD which remote site to fetch them from. Click ‘restore’. Your fresh install should be overwritten with all your original site content and settings, users included.
As far as I know, for backups automatically sent remotely to Google Drive a hacker gaining access to your admin can delete your remote backups. As these backup files originate from third party software (Updraftplus) they will be completely deleted and cannot be restored from Google Drive trash. Use Spinbackup as an additional layer of security for your Google Drive files. I am a satisfied customer of Spinbackup and feel prepared for the worst-case scenario.
That is true. If a hacker gets into your WP installation, they can delete your remote backups, hence the reason to use yet another level of protection such as Spinbackup, or manually downloading a copy of your backups, and then backing up your computer.
Including my actual site, I have backups in Google Drive, on my laptop, and 2 external drives. So basically, our site which my wife and I have spent the last 2 years building exists in 5 distinctly separate locations. I guess you have to decide how much your work is worth and how far you are willing to go in order to protect it.
It’s sad but true, but there are plenty people out there with nothing better to do than look around only to delete other peoples hard work just for fun.
Various extremely cost effective tools and methods are there for you to use, as well as the horror stories to learn from. Don’t get caught out.
On a side note, the biggest threat to my site so far has been me, myself, and I. I’m the kind of guy who might sort of break something that I own, just to see if I can fix it. And this is where backups have saved my site. The missus also wouldn’t be too pleased if I couldn’t get the site back up 😉
Google Drive’s security model/interface does not provide a way to prevent a hacker who gains access to your access token from deleting backups.
If you want to use a remote storage method that does, then use Amazon S3, with an appropriate IAM user policy. They allow you to set permissions to prevent deletions. In UpdraftPlus Premium, there’s a wizard to make it easier to set up (but it can be done in the free version too).
David
I really like the idea of easy backup from UD but it defeats the purpose if somebody can delete the backups just as easy as doing the backup.
I am backing up to Amazon S3. How can set permissions so files are not deleted?
For Google Drive, if you’re a G Suite customer, consider using Vault (if available for your account) for additional protection in the event your web site is hacked and your Google Drive backups deleted.
I think another possibility is to share the UpdraftPlus folder with another Google user, and in the second account’s Drive, regularly copy the contents of the shared folder to a different folder only accessible to the second account/user. You could probably automate the copying with a Google Script and trigger (e.g. daily). I will test this and try to come up with a simple script.One approach to keeping your Google Drive backups (more) secure in the event your web site is hacked:
- Share the UpdraftPlus folder with a second Google account. View access is fine. If you want to remove the source files after copying to the second account, grant edit access.
- On your second Google account, create an unshared folder (e.g. UpdraftPlusCopy).
- On your second Google account, go to script.google.com. Copy/paste the following (I renamed myFunction to CopyNewFiles) and replace the [bogus] folder IDs with the folder IDs for your source/destination folders:
function CopyNewFiles() {
var SourceFolder = DriveApp.getFolderById(‘JMtgsgM9sY9Fe5Z7wCbb4YVVqfeZiZ’);
var SourceFiles = DriveApp.getFolderById(‘JMtgsgM9sY9Fe5Z7wCbb4YVVqfeZiZ’).getFiles();
var DestFolder = DriveApp.getFolderById(‘SFGXwgvX6DmkAvPrrnWC2KY3imy7s2’);
var DestFiles = DriveApp.getFolderById(‘SFGXwgvX6DmkAvPrrnWC2KY3imy7s2’).getFiles();
var NotInDest = true;
while (SourceFiles.hasNext()) {
SourceFile = SourceFiles.next();
while (DestFiles.hasNext()) {
DestFile = DestFiles.next();
if (SourceFile.getName() === DestFile.getName()) {
NotInDest = false;
}
}
if (NotInDest) {
SourceFile.makeCopy(SourceFile.getName(), DestFolder);
NotInDest = true;
}
DestFiles = DriveApp.getFolderById(‘SFGXwgvX6DmkAvPrrnWC2KY3imy7s2’).getFiles();
}
} - Optionally, rename the project. Save it (Ctrl+S) works and click the Run button.
The first time you run it, you should be prompted to grant the script access to manage your (second Google account) Drive.
The script above will copy all files from SourceFolder to DestFolder that don’t already exist (identically-named file) exist in the DestFolder. If you are concerned about storage limits/cost, you could update the script to remove the original file after copying (example below). With that approach, you can remove/comment the code that checks for identically-named files in DestFolder, since that should never be the case if you remove the original file in SourceFolder. To do a restore from the UpdraftPlus plugin, you would need to copy/move the backup files back to the UpdraftPlus folder on the first Google account.
function CopyNewFiles() {
var SourceFolder = DriveApp.getFolderById(‘JMtgsgM9sY9Fe5Z7wCbb4YVVqfeZiZ’);
var SourceFiles = DriveApp.getFolderById(‘JMtgsgM9sY9Fe5Z7wCbb4YVVqfeZiZ’).getFiles();
var DestFolder = DriveApp.getFolderById(‘SFGXwgvX6DmkAvPrrnWC2KY3imy7s2’);
while (SourceFiles.hasNext()) {
SourceFile = SourceFiles.next();
SourceFile.makeCopy(SourceFile.getName(), DestFolder);
SourceFolder.removeFile(SourceFile);
}
}I cleaned up / fixed a bug in my first script above and posted to Pastebin (more legible there).
- The topic ‘UpdraftPlus Backup deleted from hacker’ is closed to new replies.
