As of May 2018, a new European Union (EU) regulation came into effect called the General Data Protection Legislation (GDPR). This regulation pertains to any company which processes the personally identifiable information (PII) of EU citizens. This data is not limited to sensitive PII such as social security number, and includes such basic information as … Read more
In our first blog post about choosing a web developer, we highlighted the importance of communication and experience. In our last blog post about choosing a web developer, we covered the importance of working with a company that has high technical proficiency and business acumen. In this blog post we will look at what differentiates … Read more
The security of personally identifiable information (PII) is an important and often overlooked consideration when gathering customer data through a web-based form. Understanding and managing personally identifiable information is getting a lot more focus in light of the recent GDPR laws coming into effect. PII is defined as: “Any information that permits the identity of … Read more
Passwords: everybody loves them and hates them Few things in modern life are more irritating than creating a new password for a website you just joined. Perhaps you just signed up for the latest music streaming service and are itching to try it out, but there it is: the dreaded password box. It is the … Read more
In previous posts we have examined some solid WordPress security fundamentals such as keeping software up to date and using strong passwords at all times. However, for those who are especially security-minded there are some advanced techniques that can significantly amplify your security posture. Two Factor Authentication Two Factor Authentication (2FA) is increasingly becoming a … Read more
The importance of keeping WordPress up to date On February 1, 2017 WordPress announced that the most recent version of the WordPress core included a security fix. Since WordPress is updated regularly and most updates contain some sort of security patch, very little attention was paid at first. However, within days the number of reported … Read more
A major challenge of working with WordPress, and of being in the web development business in general…is keeping up to date with the latest news on website security. Especially when you are working with large amounts of private or personal data / PII, such as in financial website design, site security is of the utmost … Read more
I recently received a frantic email from a friend stating that his WordPress blog had been hacked. I looked at the site, and sure enough it was full of rather unsavory content, the sort of which you’ll find in the darkest corners of your Spam folder. I was able to remove all the unwanted content … Read more
Mossack Fonseca is a law firm based in Panama. It became infamous for being at the center of the data breach dubbed “the Panama Papers”. The Panama Papers is a truly massive breach – a reported 2.6 Terabytes. To put that in perspective, the recent Sony data breach was 230Gb, just 10% of the Panama … Read more
The Payment Card Industry Data Security Standard (PCI-DSS) is a set of standards that is required for any business (of any size) which accepts credit cards. It was created by Visa, Mastercard, AMEX, Discover and JCB (as a group) to reduce credit card fraud and increase controls around credit card data. If your company accepts … Read more