Best solution for worst case
Hi to everyone,
this is my first post in this forum, I'm a happy user of msp360 for my customers and I've this think in my mind: "what happen in the worst data loss scenario where a hacker gets control of my customer's computer and, other than crypting/deleting everything, he also open CloudBerry Backup and try to delete all backups from Backup Storage tab?" What type of protection I can give to my customer in this scenario? Is there something I can do at CloudBerry Backup side or do I have to do something at BackBlaze level (I use B2B for storage)?
I understand the retention policies but can these be changed in a distruptive way by the hacker?
Thank you for your kind reply.
You should disable the agent from Global Agent Options and protect the agent and CLI with a master password from Remote Deploy.
We don't disable the agent console on the client devices as there times that we need to utilize it.
Here is what we do:
1. Protect the agent/CLI with a password (as David suggested)
2. Disable the ability to delete backups from storage from the console (it is now disabled by default in the latest version). This necessitates using Cloudberry Explorer or the BackBlaze web portal to delete unwanted backups, but it is significantly better from a security standpoint.
3. Disable the ability to change backup/restore plans (which protects retention policies) using the console. There are rare times when we need to edit plans on the device console itself, so we change the company agent settings to allow it and push/install an updated agent on the machine. 99% of the time we edit the plans from the web portal.
Prior to these features being implemented in MSP360, we had that worst case actually happen. What saved us is they forgot to delete one of our three backups.
Sign in or register to add a comment.
Add a Comment
Welcome to MSP360 Forum!
MSP360 Managed Products
Managed Backup - General
Managed Backup Windows
Managed Backup Mac
Managed Backup Linux
Managed Backup SQL Server
Managed Backup Exchange
Managed Backup Microsoft 365
Managed Backup G Workspace
Managed Remote Desktop
Backup for Linux
Backup SQL Server
MSP360 Remote Desktop Free
Case-sensitive S3 folders versus Windows non case-sensitive
Windows XP / "Calling thread cannot access this object" issue - Case#: 00049407
recommendation for proper CloudBerry solution for my Use Case
Deduplication of a backup to the cloud in case of loss of a local database - how does it work?
Terms of Service
Useful Hints and Tips
Created with PlushForums
© 2022 MSP360 Forum