my desktop PC has a USB connection to an external HDD that I normally leave turned off. I use Macrium Reflect to make images of my system drive, and save these to my external HDD, so that in the case of a ransomware infection, I can nuke everything (i.e. format all drives) and restore my OS from the most recent un-infected image.
So far, I have been, without explicitly considering it, assuming that copies of my documents in One Drive would be unaffected. To elaborate on my set up, all of the special Windows 10 user folders (Documents, Pictures, etc. ) are in my One drive folder, so they are automatically synced/backed-up to MS's cloud.
My question is am I wrong to think that I can just restore ransomware encrypted files from their synced copies in the cloud?
Might syncing the ransomware encrypted files lead to the cloud versions also being encrypted?
Edited by yu gnomi, 07 March 2017 - 01:55 AM.