Re: Backups?
"This stuff looks for and spreads to backups before it announces itself."
Which is exactly why at my company we don't back up from our web server.
We have an in-house development system that is airgapped from the internet. When we deploy a website, we burn a DVD (No USB drives are permitted on our development machines) from the dev system and upload that to our web host. If there are any changes to be made, a new disc is burned and uploaded to the web host. The only thing that comes back from the web host is the contents of the databases and that goes onto DVD as backup each day. This copy is then checked against an offline MySQL server to ensure the data has not been secretly encrypted. If it has been, then we know our web host has been infected and can take remedial action.
Should any of our sites become infected with malware, we simply reimage the web server and restore from the last DVD from our dev system.
It's clumsy and old-fashioned, and wouldn't work for a massive multinational site spanning multiple data centres, but for our small-scale ecommerce and SME sites it works like a charm.