Pci DSS compliance states by June 2016 that TLSv1.0 must be disabled. The downside to this is any browser IE10 and prior will not work to connect to your website. Those clients will need to upgrade their browsers, use a different browser or get with their browser vendor for a fix to use TLS1.1 or […]
Imagine reading Service Suspension - Ongoing unanswered abuse complaints thinking to yourself, the person is in a jamb.... I hope they get someone who can really help them (maybe we could, not sure), then later on reading the person who initiated the post also runs a "All you can Eat" (i.e. unlimited support tickets, unlimited labor time) server administration business where they advertise a long list of what they can do for you for just $15.00 per month. I guess, they are so packed with work they could not solve their own problems. Imagine, for just $15.00 per month you "24/7/365 USA-Based Technical Support" plus "24/7/365 Server Monitoring (5 Minute Intervals)" of your servers plus "Guaranteed 15 Minute Response On Monitoring Alerts" and so much more... sounds like a great deal? Right?
Repeat after me, “hackers most often target vulnerabilities, not specific people or companies.” Now, say that over and over again.. and shortly you should come to the conclusion that every single device and application typically has vulnerabilities which makes everyone a target. That’s right, everyone is a potential target — not just the big names, […]
How do you know what type of hosting -- cloud, dedicated, shared, or vps -- will fit you best? Let me share some guidelines.
What if your PCI Compliance authorized scanning vendor wants you to only allow RC4-SHA as a SSL CipherSuite in order to pass PCI Compliance against the SSL BEAST Attack? Here are the tested settings.
I would like to share with a recent, real life, story of what happens to small businesses when there is little to no documentation. I'm hoping to encourage you to review the documentation standards you have set forth for your small business; and potentially to do an in-house audit to ensure critical areas are covered.
I recently had the wonderful opportunity to read a well written book by Melinda F. Emerson, Become Your Own Boss In 12 Months. Melinda, who hosts the Small Business Chat on twitter every Wednesday night from 8 PM to 9 PM Eastern Time, focuses on helping people become entrepreneurs and for the small businesses they create to grow and succeed. A lot about what Melinda shares involve proper planning and preparation. Whether you have been in business for many years, or are just starting up... did you know that if you properly plan and prepare for your ecommerce store you greatly increase your opportunity to succeed?
Fiduciary is not a word you hear or read often as a small to medium business (SMB) owner. Yet if you are the steward of any size business, fiduciary should be an active word in how you manage your business. How does this relate to trust, security, and your business on the Internet? Let's see.
Welcome back! Last week’s article, There are no wallflowers at the security dance! Get to know your dance partners covered getting to know your security dance partners: If you are the business steward or a part of the management team, you already know the burden of responsibility for having a secure web site where your […]
f you have your business on the Internet, you are a part of a line dance. You can chose to be a wallflower, and face the consequences of doing nothing. Or you can get to know your fellow dance partners (maybe picking replacements for ones that no longer fit), and be an active member of the security dance.