When we think about protecting a SQL Server environment, we tend to think about the databases themselves – and rightly so. But your backups are every bit as sensitive as the data they contain. A backup archive holds a complete, portable copy of your information, and the credentials that move it off-site can unlock cloud storage accounts, file servers, and more. In today’s environment – where ransomware crews specifically hunt for backup systems, and a single exposed secret can cascade into a much larger incident – the tools that safeguard your data have to hold themselves to a high standard.
That belief is what drove the security work in SQL Backup Master 8.5.
A top-to-bottom security review
Ahead of this release, we put SQL Backup Master through a thorough, focused security review – examining how credentials are stored, how the application and its background service talk to each other, how backup files are staged on disk, and how data travels to your storage destinations. The result is one of the most security-focused releases in the product’s history, with hardening applied across the board.
We’ve kept the deep technical write-ups separate so this post stays readable, but a few highlights are worth calling out:
- Stronger protection for your credentials and configuration. Stored secrets are now bound to the machine they live on, and configuration exports are protected with modern, password-based encryption – so moving your setup between machines is both easy and secure. We walk through this in detail in our guide to secure configuration export and recovery.
- A locked-down service. The background service that performs your backups now restricts its control channel to administrators only, closing off a class of local access we didn’t think belonged open. The reasoning and specifics are covered in service authorization.
- Tighter permissions on temporary backup files. While a backup is being prepared, its working files are now placed in a per-job location with carefully scoped permissions, so sensitive data isn’t left more accessible than it needs to be. See temporary folder permissions for the full picture.
Beyond these, 8.5 also brings safer defaults and modern protocols for data in transit – including TLS 1.2/1.3 for FTP destinations, optional SFTP host-key verification, HTTPS-by-default for custom S3 endpoints, updated cloud authorization (PKCE) for several providers, and signature verification for product updates. You can find the complete list in our release notes.
Free for v8 users – and fully compatible
SQL Backup Master 8.5 is a free update for all current version 8 license holders. There’s no new purchase, and no catch. We’ve also gone to considerable lengths to preserve full backward compatibility. Your existing backup jobs, schedules, destinations, and saved credentials carry forward – the security improvements are applied transparently during the upgrade, with nothing for you to re-enter or reconfigure. In other words, you get a meaningfully more secure product without changing the way you work.
A gentle nudge
Security is most valuable when it’s actually in place, so if you’ve been putting off an update, this is a good one to take. Upgrading is quick, it’s free for v8 customers, and your configuration comes along untouched.
You can update directly from within SQL Backup Master (the application will let you know when a new version is available), or download the latest build any time from our website.
As always, if you have questions about any of these changes – or run into anything at all during the upgrade – our support team is happy to help. Thank you for trusting SQL Backup Master to protect your data.