Currently it seems to be a vulnerability with custom emojis only, which this instance never had, so currently we shouldn't be affected. However this is a developing situation and we will continue to monitor.
I can't remember exactly but @Shadow@lemmy.ca is the one that takes care of those things, I think he's got it set up to backup every 8 hours? I'm taking a rapid crash course in sysadmin but I'm not really ready to start poking at production server stuff yet.