Security Articles


5 Software-as-a-Service Security Best Practices for Developers

The majority of applications being used today are Software-as-a-Service (SaaS) solutions accessed via the cloud. The convenience of apps such as Google’s G-Suite, Salesforce, Basecamp and others brings with it the challenge of securing all the data being transmitted by millions of people every day. 

As the demand for SaaS and cloud-based solutions continues to grow, so too do the opportunities for hackers to steal sensitive information. Recent high-profile security breaches include 2017’s Equifax hack, which affected 148 million consumers. A leaked password led to over 57 million Uber customers’ information being compromised when hackers were able to access the company’s GitHub account and steal AWS login credentials.

The Cloud Security Alliance (CSA) recently released a report detailing the top 12 security concerns when it comes to SaaS and cloud-based software solutions. Several vulnerabilities occur during the development process itself. Software developers can help prevent future attacks by making security a top priority throughout the development process. Here are 5 best security practices developers should follow when creating SaaS solutions. [more]

Top IoT Security Mistakes & How to Avoid Them

Gartner predicts that the number of IoT devices will reach 25 billion worldwide by 2020. From smart phones to smart cars to voice-activated assistants that respond to our every whim, we as a society are more connected than ever to the Internet of Things. And these connections we’re making? They’re not all that secure.

The problem with the majority of smart devices is that the firmware they are built on is easily penetrated by hackers. In 2016, the Mirai botnet attack took down popular sites like Twitter, Netflix, and Etsy. It did this by accessing IP cameras and launching a DDoS attack on the DNS provider. The hack was made possible by the fact that the software versions were out of date and most of the passwords had not been changed or updated.

So, how can you protect yourself from these types of attacks? If you’re going to use smart devices, you need to be smart about security. Here are 5 common IoT security mistakes and how to avoid them. [more]

Sitecore Security: 4 Ways to Keep Customer Information Safe 

Sitecore is all about improving the customer experience. And nothing kills the customer experience or destroys customer trust quite like being hacked. 

Just last week, the news broke that the Equifax data breach was also being investigated by UK officials. It seems that in addition to the 143 million Americans who had their personal information compromised, another 700,000 residents of the United Kingdom were affected as well. This is just another example of a high-profile company having to deal with the repercussions of a massive data breach.

If your organization is utilizing Sitecore for web content management and automated marketing, here are a few steps you can take to ensure the utmost safety for sensitive customer data. [more]