Posted by Jason Sherrill on 1/23/2015
Certified Public Accountants handle enormous amounts of sensitive data when working with their business and individual clients, but many CPAs are not aware of the risk that they're subjecting their clients to when they send or receive documents through many common sharing methods today. Let’s look at three of the most common methods by which CPAs unwittingly put customer data at risk.
Posted by Jason Sherrill on 1/15/2015
This is one of those calls that makes the hair stand up on your neck. A customer calls your service center distressed because she is seeing suspicious looking pop-ups for credit reports, free loans, or unseemly products when she visits your site. She is concerned that your website has been hacked. You have followed good security practices and your trusted security partner has said that there is no malicious code on your website. What could be causing your customer to see this unusual pop-ups touting free credit scores or credit card offers only when she visits your website?
Posted by Jason Sherrill on 10/20/2014
I work with many new banks and credit unions every month to help them launch new websites, migrate websites into new hosting environments, and help put DDoS mitigation and other security protections in place. A surprising number of the financial institutions that come to us for help are in a very precarious position with regard to ownership and access to the control mechanisms critical web properties, including their domain registrar account and DNS administration. When time is of the essence, not knowing who holds the keys to these web properties can create significant delays in getting services transferred or restored. If you’re a bank or credit union executive responsible for managing disaster recovery or information security risks, you should set aside some time today to ensure that you know who manages these three important assets.
Posted by Jason Sherrill on 10/15/2014
WordPress is the most popular blogging platform on the web with millions of websites running it globally. WordPress is one of the easiest platforms available for beginners and experts alike to start a blog. It fulfills its core purpose remarkably well! But while we like (and use) WordPress as a blogging platform and as a convenient tool to refer friends & family to when they want to build a personal website, it is not a platform that banks and credit unions should consider for their websites.
Posted by Jason Sherrill on 6/16/2014
A Delivered Secure user recently asked what the External IP Address and Browser UserAgent String values are that we provided in an email notification when someone picks up a file you’ve sent. These two pieces of information help to form an audit trail and provide the sender of the secure message a level of validation that that person who received the files is intended recipient. Are there any security risks associated with highlighting this already public information? Let’s explore that question further.