Is Your Website Vulnerable?

Apr 24, 2014

Back to Veoci BlogIs Your Website Vulnerable?

Is Your Website Vulnerable? Run this Test.

The recent Heartbleed bug that compromised OpenSSL – a key component for secure access to servers on the internet – has greatly heightened the need for internet security awareness. This vulnerability was vast; almost two thirds of the world’s 50 million servers run this component. While many website teams have updated their software to eliminate this bug, it may be months or longer before all servers are made safe;

it’s not surprising that there will still be servers with this bug even a few years from now. Unfortunately, only when these servers are retired will this security issue be completely eliminated. While system administrators are better at updating their software in a timely fashion after vulnerability announcements, until they do, your data is vulnerable, and your wallet is lying open on the internet. The plain truth is that the biggest and most easily fixed deficiency is the lax system administrator who hasn’t been keeping up to date with security patches and virus/vulnerability software updates. In these cases, good fortune is often his/her only defense. Fortunately for most of us, the security breaches we hear about generally affect only brand name websites that are known to millions. The more recognizable the name, the more likely someone will think it’s worth hacking. 

But the little guys need to watch out too. As more “teams” have stepped into this “opportunity,” the World Wide Web is becoming a dangerous place. Outlaw organizations can set up methods and processes for hundreds of employed hackers. With just a bit of bad luck, your site could be next on the evening news.

Sample of Recent Qualys SSL Server Test Scores

Other hackers work in the world of espionage and war: they come in the form of patriotic professionals who hack into “enemy” sites. Government espionage organizations study these system vulnerabilities continuously and use these bugs to break into target systems. Legend has it that government groups know of these vulnerabilities years before they’re discovered by the public, and of course they take full advantage of them. Qualys, a well-known security company, has released a simple test you can run to check your website and the websites you use – banking, business, insurance, you name it. It is prudent to check the secure sites you use, since after all, it is your data that will be stolen. This test is available free to anyone on the Internet. 

Click Here. Whether you use this test or not, bear in mind there are hundreds of hackers who will – to discover the vulnerable sites they should hack. At Veoci, as you’d hope with any professional software development organization, security is always our #1 priority. Our cloud-based service was patched as soon as the Heartbleed vulnerability was announced, and all of our customers immediately realized the benefits. We’re constantly performing extensive tests on our software – some even by outside security auditors – and on the Qualys SSL Labs test, we’re proud to report that we got an “A.” The number of sites that are getting “F”s is quite an eye-opener. Take care of your private personal, financial, and business data, and be sure the sites you access are secure. And of course, change your password often!

Qualys SSL Server Test - Veoci Results
Type image caption here (optional)

Subscribe to the Veoci Blog

Receive all the latest emergency, crisis, and continuity management news, tips, and advice

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Related Posts

Business Continuity vs ITDR: What are the Differences?

In the past, you may have heard the terms “business continuity” and “disaster recovery” used in conjunction, or even interchangeably, but what do they really mean? You probably won’t be surprised to discover that they have many similar goals when it comes to recovering from an unplanned incident and restoring essential functions, but it is the nuances of their differences that are really crucial to understand.

Continue reading
Maintaining Institutional Knowledge: Building an Effective BCMP

Much of the strength behind a BCMP solution lies in the institutional knowledge it inherently establishes. There are many platforms out there that can help you build your BCMP components, but it is essential that you find one that also has the capacity to foster institutional knowledge.

Continue reading
Getting the Most Out of Real-World Exercises

Exercising a BCP is rarely as simple as the online guides suggest. A business continuity manager has to jump through a lot of hoops to get that final, show-ready polish on a BCP. They’re often chasing buy-in from each corner of the organization and bugging business unit leads and department managers to test BCPs and record the outcomes. What can a business continuity manager do to encourage the heads in their organizations to actively participate and do their part in preparing for disruptions?

Continue reading

Connect with us on Social Media

Join us on our journey to improve emergency, operations, and continuity management!

Veoci Facebook PageVeoci Twitter AccountVeoci Linkedin Company Page

Face crisis and continuity challenges with expert solutions designed for you and your teams.

Learn how Veoci puts you in control