I doubt that this is the case, whether it is encrypted or not. The complexity and risks involved with decrypting it on the fly is really unrealistic and unheard of by me (have not heard of everything but still)
Also the ransomware would also need to differentiate between the user and the backup program. When you do differentiated backups(like restic) with some monitoring you also would notice the huge size of the new data that gets pushed to your repo.
=> More informations about this toot | View the thread | More toots from ShortN0te@lemmy.ml
=> View miau@lemmy.sdf.org profile
text/geminiThis content has been proxied by September (ba2dc).