Hi everyone, I’d suggest, if possible, to put a password confirm before submitting a new backup. If a malicious attacker gains access to the website he could possibly erase the existing backups and/or do a new backup uploading corrupted files, if no backup is store offline that procedure would irreparably damage the website.
This idea was posted in UpdraftCentral - remote control plugin, UpdraftPlus - backup/restore plugin and tagged backup, remote, security on February 15, 2018 by 
Chuckly.
Already possible: https://updraftplus.com/faqs/want-lock-updraftplus-settings-site-admins-access/