Feature Request for Galaxy: Daily Whole-Server Snapshot to Protect Against Cyber Attacks

Just a thought —

From a recent industry report by Sophos, “The State of Ransomware 2020”:

  • Half of organizations were hit by ransomware last year (page 3).

  • 94% of organizations whose data was encrypted got it back. More than twice as many got it back via backups (56%) than by paying the ransom (26%). (page 2)

Garmin reportedly just paid $10M in ransom to get its servers back.

Ransomware potentially encrypts the whole server. I’m not a security expert at all – but it seems like if the company had a daily whole-server snapshot it would be helpful in recovering from a ransomware attack.

Does Galaxy already do this by any chance? I searched the Galaxy docs for “snapshot” but didn’t yet find a reference to it.

The developer could just do a new push to Galaxy and restore that way. But, not if the developer’s computer has also been hacked and encrypted along with the rest of the company’s systems.

Perhaps Galaxy could keep a snapshot of the source code and / or of the server image, and potentially be a leader in recovery from ransomware attacks – one click and you’re back online!

In-order for a hacker to install ransomware on your server, they would need a remote code execution (RCE) vulnerability (https://owasp.org/www-community/attacks/Code_Injection) in the first place. RCE is classified as the most critical type of vulnerability.

You shouldn’t be using Galaxy for persistent storage and instead offload it to a scalable storage solution like AWS S3. Likewise, you should use a code repository solution to store source code, such as Github or Bitbucket.

The solution is to prevent RCE vulnerabilities in the first place via your Meteor app.

1 Like

Great points! At the same time, I get regular briefings on this. There are sophisticated cyber-attacks, and the only safe assumption is that you will be hacked, and to have a really strong plan to recover quickly from backup. :slight_smile:

1 Like

Your database should have its own backup solution, MongoDB Atlas has a robust, enterprise-grade backup solution.

The Galaxy containers only serve your compiled app in Docker-isolated containers. You can simply revert to a previous version should you have a RCE vulnerability in your code (1-click from dashboard version selection).

Code repositories such as Github & Bitbucket have comprehensive git history and revert functionality.

It does not make sense for Galaxy to have daily snapshots of compiled apps when they already have version selection/revert of each deployment

1 Like

Perfect. Thanks very much for this info!