Posts Tagged ‘security’
Thursday, May 23rd, 2013
 Two-Factor Authentication (supposedly patented by Kim DotCom)– using a password plus “something else” to gain access to your account and to prevent lost, stolen, or guessed passwords from impacting you — is finally becoming fashionable.
First, it was a cool idea, then some places such as LuxSci started supporting it, but it was rarely used due to people not wanting to bother with an extra step to login to their accounts. Now, with Twitter adding 2-factor authentication to help stem the tide of account compromises, security is now fashionable.
This turn about is really fantastic as it brings security consciousness much more into the mainstream — so much so that popular Radio hosts are talking on the air about how to secure accounts. This can only be good for the adoption of better security practices overall and a decrease in compromises due to laziness … and in cases like HIPAA, laziness can be a terrible thing.
In this post, we’ll go over how to secure your LuxSci account against intrusion using Two Factor authentication and other methods.
Read the rest of this post »
Tags: 2-factor, authentication, DuoSecurity, firewall, ftp, imap, mobile, password, pop, security, sms, smtp, ssl, tls, twitter, two-factor
Posted in LuxSci Library: Security and Privacy
No comments »
Wednesday, May 15th, 2013
 LuxSci has made two significant improvements to its Account API – one to improve security and one to enable automated management of user AutoResponders.
Read the rest of this post »
Tags: api, autoresponder, cgi, responder, security, soap
Posted in New Feature Announcements
No comments »
Friday, May 10th, 2013
 Email and other data is either being “transmitted” or ”processed” or “at rest”. E.g. it is moving from one computer to another, or it is stored / at rest on a computer, or it is preparing to be transmitted or stored.
While most types of compliance regulation, such as HIPAA, specifically require that data be transmitted securely, not all regulations require that data be stored in an encrypted format while at rest. E.g. HIPAA does not require at rest encryption, though it may be recommended to decrease potential liability.
However, having your email and other data encrypted while at rest does significantly increase the security of that data, even if that level of security is not explicitly required. As a result, many LuxSci customers have asked about how to ensure that all of their email and other data is encrypted while at rest.
Read the rest of this post »
Tags: at rest, cache, decrypt, encrypt, encryption, hipaa, pgp, s/mime, secureform, secureline, security, sent mail, smtp, tls, transmission, webmail
Posted in LuxSci Library: HIPAA, LuxSci Library: The Technical Side of Email, SecureForm
No comments »
Tuesday, March 19th, 2013
 LuxSci is constantly adding and improving its service offering. As part of that evolutionary process, we continually make many additions and changes related to security and privacy. This post provides a summary of many improvements we have made in this area in the past 12 months. To see last year’s security wrap up, see: Security: A Year in Review 2012.
Read the rest of this post »
Tags: security
Posted in LuxSci Library: Security and Privacy
No comments »
Friday, February 22nd, 2013
 A very common marketing ploy involves companies advertising “secure” services .. where that security consists of only SSL- or TLS-encrypted connection to their servers. While use of TLS and SSL is a critical part of web and email security, it is only one small aspect of security. Below, we will talk about some of the other aspects of what you should be looking for in terms of an actual secure solution so you can be more saavy of simplistic marketing claims in the future.
Read the rest of this post »
Tags: eavesdropping, email provider, encrypted zip, encryption, pgp, s/mime, secure email, security, smtp tls, ssl, ssl and tls, tls
Posted in LuxSci Library: Security and Privacy
No comments »
Friday, February 15th, 2013
 LuxSci is a small company and our staff are well trained and vigilant, watching for social engineering and other attacks on your accounts and data. We have very strict privacy policies and internal security policies designed to ensure that your data remains confidential and that nothing unauthorized happens to your accounts.
This may sound like normal business, but it really isn’t. We take extra care to protect you.
Read the rest of this post »
Tags: access, confidential, hipaa, privacy, security, trust
Posted in LuxSci Insider
No comments »
Thursday, February 14th, 2013
 Anyone with a business web site knows that the key points to a successful web presence include:
- Getting the right people to visit your site
- Making the visitor feel comfortable with you
- Instilling trust in your company
If these are there, you will have a much larger rate of sales and lead conversions.
Trust in your company is often overlooked in the rush to generate lots of traffic and make sales. Trust comes from many factors … having excellent content on your web site that shows that your company “knows its business”, referrals and word of mouth from other customers, etc.
One relatively simple thing that can be done to install trust is to add third party “certification seals” to your web site.
Read the rest of this post »
Tags: certification, compliance, green, hipaa, mcafee, mcafee secure, seal, security, trust, web site
Posted in Business Solutions
No comments »
Tuesday, February 12th, 2013
 WordPress is an extremely popular content management system for both blogging and creating web sites. It’s popular because it is quick to set up, easy to administer, has a very large supported base of add-ons, and looks good. As a result, many LuxSci customers use WordPress in one fashion or another for their web sites hosted at LuxSci.
As we cater to a large segment of customers who have specific compliance needs, e.g. HIPAA compliance, we frequently are asked about using WordPress with ePHI … e.g. using WordPress to provide access to protected health information for members of the WordPress site.
Can this be compliant? Is it a good idea?
Read the rest of this post »
Tags: breach, dedicated, ePHI, hipaa, php, security, web hosting, wordpress
Posted in LuxSci Library: HIPAA
No comments »
Saturday, October 13th, 2012
 Can I block this one IP that is scanning our accounts? Can I restrict my account so that people can only access it from our office network, or require that they authenticate to WebMail first (using two-factor authentication)?
LuxSci is constantly asked for fine-grained access controls by customers who are in shared environments (sharing the same servers with many other accounts). However, blocking access from IP addresses globally at the request of one customer may potentially affect other customers using the same system.
That is, until now. LuxSci customers can now configure their own custom firewalls to allow and deny access as they see fit without affecting other customers sharing the same server(s).
Read the rest of this post »
Tags: access control, alerts, firewall, insecure, login, password, password guessing, secure, security
Posted in LuxSci Library: Security and Privacy, New Feature Announcements
No comments »
Tuesday, August 7th, 2012
 Many web sites have a “contact us” page and most have simple online forms that visitors can use to submit questions. However, the garden variety “contact us” page suffers from several serious problems:
- Spam – Getting unwanted form submissions from web robots.
- Privacy – Often, sensitive data is submitted insecurely through these forms.
- Archival – You may need an archived record of all submissions.
- Notices – You may need to be alerted of form submissions even if you are not online.
It turns out that you can stop spam, ensure content security and privacy, archive submissions, and even get text message notices to your phone using LuxSci SecureForm. And it takes only a couple of minutes to integrate into any existing web site at any web hosting provider (LuxSci offers web hosting, but it’s not a requirement for SecureForm).
Read the rest of this post »
Tags: captcha, contact us, email archival, notices, privacy, secureform, security, sms, text message, web form
Posted in Business Solutions, SecureForm
No comments »
|
 |
|
