Posts Tagged ‘online security’

By:


Date:
Sep 29, 2014
Recently, the United States Department of Homeland Security’s Computer Emergency Readiness Team (US-CERT) issued an alert regarding CVE-2014-6271, or the ‘Shellshock’ bug, a severe flaw in the bash Linux shell.  This flaw allows attackers to gain complete control of a system with relative ease. A second vulnerability, CVE-2014-7169, was spotted while a patch was being written for the first. UPDATE 9/29/14: Three additional vulnerabilities, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, were discovered early yesterday. . The status for Codero customers as of 9/29: Managed Services: Your servers have… Read More
By:


Date:
Sep 11, 2014
The look in their eyes, their handshake, the tone of their voice, and all of the messages they’re sending with their body language– these are all part of the incredibly complex picture of recognizing who someone is, and ascertaining their intent. For centuries, business transactions were conducted in person. The intermingling of computers, the internet, and business, however, has forced face-to-face interaction to take a backseat to digital forms of identification. The earliest answer to this has been the password.  Yet as password management, standards,… Read More
By:


Date:
Sep 4, 2014
At some point in our lives, we’ve all gone through some online account creation process and created a password.  Frequently, we’re required to choose a password that includes something like at least one capital letter, one number, et cetera.  The stricter the criteria, the more layers of security we think we’ve added to our passwords. However, that’s not actually the case. The math behind password security To understand why, let’s do some math. (It will be really simple, I promise.) One method of attempting to… Read More
By:


Date:
Aug 28, 2014
Security is hot topic on the internet right now and it’s only getting hotter.  In recent years, attacks ranging from simple “script kiddies” to complex, state-sponsored organizations (here’s a detailed report on one of them) have only increased.  The only way to keep a server or environment completely safe from internet-based attacks is to uncable it, and put it in the back of a closet.  Sadly, studies have shown that websites hosted on servers sitting in the back of a closet without an internet connection… Read More
By:


Date:
Aug 12, 2014
As prevalent and sophisticated as IT security threats are today, one of the most significant threats doesn’t involve writing complex code, spreading a virus, or launching a denial of service attack. As attackers have known for a long time, one of the potentially most effective attacks is social engineering, the art of manipulating people to gain access or information to something the attacker is not supposed to have. This type of attack may be low-tech, but it’s just as dangerous as any other major threat,… Read More
By:


Date:
Jun 5, 2012
Imagine if you will. You are a business owner. You have an e-commerce site, running on servers at a hosting company. This hosting relationship helps put food on your table and the table of each of your employees. You depend on it. Now, imagine a former employee gets access to your servers and compromises your business—perhaps to the point of no return. What if that former employee gained access by convincing your hosting company that he was you, or at least someone who is authorized… Read More
By:


Date:
Feb 6, 2012
Over the past weekend an individual or group spoofed the e-mail from support@codero.com and sent unauthorized Domain Service Notices to many domain name registrants.  These emails were not sent by or authorized by Codero.  Codero does not offer domain name registration services, and the contact information provided in the emails is not Codero contact information. Please note also that no confidential Codero customer data was obtained by the perpetrators of this spoofing scam or used as part of the scam.  Instead, only publicly available domain… Read More
By:


Date:
Jan 13, 2012
I wanted to take a moment to touch on the Protect-IP Act (PIPA) and the Stop Online Piracy Act (SOPA) legislation currently being considered in the U.S. Congress. SOPA and PIPA would require web hosting companies, like Codero, to police websites to stop the communication of potentially copyright-infringing information over the internet. We would like to make sure you are fully aware of the potential impact of this legislation and what Codero’s stance is on this issue. Codero strongly opposes both the Stop Online Piracy… Read More