Solved

I am in need of help with an ibackup.com account.  My client doesn't know their encryption key to restore from their backup.  The key is not encrypted on the website for entry.

Posted on 2014-07-22
3
398 Views
Last Modified: 2014-08-11
My client doesn't know their encryption key for their account.  They thought they had it written down, but cannot locate it.  This is needed to be put in on the website to allow for the restore of data.  

The passkey they enter is not encrypted on the site. (ie. They are not entering the hash in to the field, just the password)  

I have spoken to tier 1 and tier 2 and both said that they do not store the password data so they are not able to reset the key without resetting the entire account and losing all of the backup data.  The techs told me to try and keep guessing passwords and brute force in.  This doesn't seem like a great use of our time.  Does anyone have any advice?  Thank you.
0
Comment
Question by:mjsimmer
  • 2
3 Comments
 
LVL 5

Expert Comment

by:amac81
ID: 40212421
I have been in a similar scenario with iBackup and their technicians are correct.  Their systems handle the encryption using the key without any interaction.

Perhaps they could send you the encrypted copy of the backup set on a USB disk and you could brute force that....might be best case.
0
 

Accepted Solution

by:
mjsimmer earned 0 total points
ID: 40244520
We gave up and hope the data can be recovered off of the drive.
0
 

Author Closing Comment

by:mjsimmer
ID: 40252652
No real solution. That is why it is encrypted. If the customer loses the password shame on them!
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
Nothing in an HTTP request can be trusted, including HTTP headers and form data.  A form token is a tool that can be used to guard against request forgeries (CSRF).  This article shows an improved approach to form tokens, making it more difficult to…
The purpose of this video is to demonstrate how to set up the WordPress backend so that each page automatically generates a Mailchimp signup form in the sidebar. This will be demonstrated using a Windows 8 PC. Tools Used are Photoshop, Awesome…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now