All my source code gone!
-
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
I wonder how "off-site" their backups really were if they could just be deleted from the control panel. I store all of my code in Azure, but I also have everything backed up at home and on my own "off-site" backups. I always maintain 3 copies of everything I can't afford to lose, on seperate media, services and locations, none of which are connected to each other. Unless an asteroid hits the East Coast and obliterates half the United States, it's impossible for me to lose everything like you have.
A guide to posting questions on CodeProject
How to debug small programs
Dave Kreskowiak -
That should teach you all that USB drives, Private NAS drives and other personal backup / repositories were a good idea and that the cloud is a bad idea.
The issue is not the cloud. The issue is trusting a single backup location (and I count "the cloud" as such). If you really care about backups, you should have different backup locations. And a cloud backup can still be a good choice for that as long as you still have your own copy somewhere.
-
They did. But those got deleted too :rolleyes:
Yeah right - the "offsite backups" got trashed. I don't know about you, but my offsite backups aren't connected to my main system once they have been written: they are the backups-of-last-resort and you can;t keep those in a vulnerable location. What they mean is: "we don't do backups".
Those who fail to learn history are doomed to repeat it. --- George Santayana (December 16, 1863 – September 26, 1952) Those who fail to clear history are doomed to explain it. --- OriginalGriff (February 24, 1959 – ∞)
-
That should teach you all that USB drives, Private NAS drives and other personal backup / repositories were a good idea and that the cloud is a bad idea.
No, the cloud as your sole repository is a bad idea, just like have only your own NAS is a bad idea. Combining them as backups of each other and your local copies is a good idea.
A guide to posting questions on CodeProject
How to debug small programs
Dave Kreskowiak -
Yes, only recent projects. I deleted the very old projects.
First off, sorry for your losing source code. If it is any consolation at least you still have the more recent code. I find that I have copies of some very old projects but never go to look at them because they were done with older technology and offer little help with current projects. The more recent the project the more likely that it is done with a technology you are still using.
**_Once you lose your pride the rest is easy.
I would agree with you but then we both would be wrong._**
The report of my death was an exaggeration - Mark Twain Simply Elegant Designs JimmyRopes Designs
I'm on-line therefore I am. JimmyRopes -
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
I guess I'll say, there's something suspicious here. The grammar is terrible, and the very concept that backup data could be wiped is hard to believe. Furthermore, they talk about DDOS but also someone who had access to their control panel. How are those two related? And then there's this bizarre statement: Upon realisation that somebody had access to our control panel we started to investigate how access had been gained and what access that person had to the data in our systems, it became clear that so far no machine access had been achieved due to the intruder not having our Private Keys. No machine acccess...not having private keys? What does the double negative mean? And why would you even futz around "investigating" if you thought access was compromised? I would instantly change passwords, keys, etc. At this point we took action to take control back of our panel by changing passwords, however the intruder had prepared for this and had already created a number of backup logins And you didn't check for this? Supposedly compounding the problem? And why hasn't this story been picked up in the news? There is absolutely no mention of it anywhere that I've found. To be honest, this looks like a "take the money and run" scheme. Marc
Latest Article - APOD Scraper
-
Yeah right - the "offsite backups" got trashed. I don't know about you, but my offsite backups aren't connected to my main system once they have been written: they are the backups-of-last-resort and you can;t keep those in a vulnerable location. What they mean is: "we don't do backups".
Those who fail to learn history are doomed to repeat it. --- George Santayana (December 16, 1863 – September 26, 1952) Those who fail to clear history are doomed to explain it. --- OriginalGriff (February 24, 1959 – ∞)
Absolutely! One important part of my job is to setup backup plans for my clients. If I had done things like they did, I would be fired now. Typically, any one of my clients could undergo a fire, I would still be able to setup a new platform in a few hours. This story is just such a shame.
There are two kinds of people in the world: those who separate humankind in two distinct categories, and those who don't. "I have two hobbies: breasts." DSK
-
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
-
Eddy Vluggen wrote:
outsourcing the storage of sensitive information is an epic bad idea
But for the moment where all your local data is gone. In which case it might be quite interesting to have the data somewhere in the cloud.
~RaGE();
I think words like 'destiny' are a way of trying to find order where none exists. - Christian Graus Entropy isn't what it used to.
-
I guess I'll say, there's something suspicious here. The grammar is terrible, and the very concept that backup data could be wiped is hard to believe. Furthermore, they talk about DDOS but also someone who had access to their control panel. How are those two related? And then there's this bizarre statement: Upon realisation that somebody had access to our control panel we started to investigate how access had been gained and what access that person had to the data in our systems, it became clear that so far no machine access had been achieved due to the intruder not having our Private Keys. No machine acccess...not having private keys? What does the double negative mean? And why would you even futz around "investigating" if you thought access was compromised? I would instantly change passwords, keys, etc. At this point we took action to take control back of our panel by changing passwords, however the intruder had prepared for this and had already created a number of backup logins And you didn't check for this? Supposedly compounding the problem? And why hasn't this story been picked up in the news? There is absolutely no mention of it anywhere that I've found. To be honest, this looks like a "take the money and run" scheme. Marc
Latest Article - APOD Scraper
-
Absolutely! One important part of my job is to setup backup plans for my clients. If I had done things like they did, I would be fired now. Typically, any one of my clients could undergo a fire, I would still be able to setup a new platform in a few hours. This story is just such a shame.
There are two kinds of people in the world: those who separate humankind in two distinct categories, and those who don't. "I have two hobbies: breasts." DSK
That's one of my problems with the cloud: you have no idea who is doing the actual storage, and what exactly they are doing. Do they backup? Or save money by hope-and-pray? What kind of people do they employ - apart from "the cheapest possible"? They will have total access to my data - so what are they going to do with it? You may have guessed, I don't keep anything serious out there! :laugh:
Those who fail to learn history are doomed to repeat it. --- George Santayana (December 16, 1863 – September 26, 1952) Those who fail to clear history are doomed to explain it. --- OriginalGriff (February 24, 1959 – ∞)
-
I guess I'll say, there's something suspicious here. The grammar is terrible, and the very concept that backup data could be wiped is hard to believe. Furthermore, they talk about DDOS but also someone who had access to their control panel. How are those two related? And then there's this bizarre statement: Upon realisation that somebody had access to our control panel we started to investigate how access had been gained and what access that person had to the data in our systems, it became clear that so far no machine access had been achieved due to the intruder not having our Private Keys. No machine acccess...not having private keys? What does the double negative mean? And why would you even futz around "investigating" if you thought access was compromised? I would instantly change passwords, keys, etc. At this point we took action to take control back of our panel by changing passwords, however the intruder had prepared for this and had already created a number of backup logins And you didn't check for this? Supposedly compounding the problem? And why hasn't this story been picked up in the news? There is absolutely no mention of it anywhere that I've found. To be honest, this looks like a "take the money and run" scheme. Marc
Latest Article - APOD Scraper
-
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
Never put stuff you care about in the cloud without local working copies! It sucks that a provider was taken down (although I agree that the explanation seems pretty implausible and it sounds like a take-the-money-and-run type of thing), but you should never lose data if a remote provider goes down or becomes unavailable. Disk space is so cheap that there's no point in ever deleting any of your local source code, it will all add up to less than one video or CD unless you're really prolific.
-
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
The posting makes no sense to me. A big one is how would you lose the offsite backups? Sounds to me like an insider with a grudge did the deed.
-
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
Not wishing to take advantage of your misfortune, but this just confirms my distaste/distrust for "the Cloud".
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein
"As far as we know, our computer has never had an undetected error." - Weisert
"If you are searching for perfection in others, then you seek disappointment. If you are seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010
-
Ouch, that sucketh. But just more evidence that "no one else but you can keep your stuff safe". I agree with the others that this whole "cloud" thing is a very bad idea.
You'll never get very far if all you do is follow instructions.
Looking at my tiny TFS Express VM, which is quietly using 1.5 out of the 32GB of RAM on the multi-purpose VM host I put together for under $1000... Looking at the external backup drive sitting next to it, which was last updated on Sunday (only because my source hasn't changed this week). Currently physically disconnected. My offsite backup drive is a one-hour drive away. No cloud here. I like to think I'm doing ok.
-
The posting makes no sense to me. A big one is how would you lose the offsite backups? Sounds to me like an insider with a grudge did the deed.
Certainly doesn't pass the smell test...
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
Sorry for your data loss. I find it very suspicious that the service can't restore older backups. Going forward, you may want to consider using Visual Studio Online (Basic)[^]. It's free (for up to 5 users) and I've found it to be extremely reliable and very fast. /ravi
My new year resolution: 2048 x 1536 Home | Articles | My .NET bits | Freeware ravib(at)ravib(dot)com
-
That's one of my problems with the cloud: you have no idea who is doing the actual storage, and what exactly they are doing. Do they backup? Or save money by hope-and-pray? What kind of people do they employ - apart from "the cheapest possible"? They will have total access to my data - so what are they going to do with it? You may have guessed, I don't keep anything serious out there! :laugh:
Those who fail to learn history are doomed to repeat it. --- George Santayana (December 16, 1863 – September 26, 1952) Those who fail to clear history are doomed to explain it. --- OriginalGriff (February 24, 1959 – ∞)
Virtual Machines have greatly simplified backup tasks, I must confess. Nowadays a reverse-incremental backup of a big server can take ten minutes when it needed hours before; and restorations of a full server are really trivial with virtual hardware abstraction layers. That's why I can't understand that a company, whose job is to take care of the files of its users, does lose these files. That seems as odd to me as a fiscal administration who would lose your informations; that can't happen. And yet, it does...
There are two kinds of people in the world: those who separate humankind in two distinct categories, and those who don't. "I have two hobbies: breasts." DSK
-
I put all my personal source code in private repository hosting. Yesterday night, I was working on a personal project and it failed to check in my code. I thought it was just routine system maintenance. Just now I went to the website and saw this notice[^]: The short story was a hacker failed to extort money from them and proceeded to delete all/most of the repo and snapshots. I think I cannot sleep tonight! :( They advertised Oracle was one of their customers. I wondered how much Oracle lost.
Why didn't they contact Amazon right away so their account could be temporarily frozen, preventing the malicious people from doing any further damage?
Regards, Nish
Latest article: Using the Microsoft Azure Storage Client Library for C++ Blog: voidnish.wordpress.com
