VPNs are in common usage these days and it’s no surprise with the various security threats that are out there. Sometimes you want them to connect to your company’s network securely, other times you may want to connect through a proxy network in order to anonymize your location. With the advent of cloud infrastructure many of our customers want to …
Five Security Measures CloudSigma has taken to keep you safe
The complexity of cloud infrastructures makes it difficult for customers to assess the security level of their cloud provider in any great detail. So, below is a list of the key security measures which CloudSigma as a major public cloud IaaS provider has taken to keep you, the customer, safe. These sit alongside the structural measures that keep customer cloud …
How to securely use BitTorrent Sync for backups
A while back I wrote a guest post on BitTorrent’s blog about how to use BitTorrent Sync as an alternative to cloud storage services, such as Dropbox and Box. As a result, this post is an expansion of that post that provides more clear step-by-step instructions on how to securely deploy BitTorrent Sync. Security notes First, since the focus of …
CloudSigma partners with Black Lotus to Provide Enhanced DDoS Protection
International Customers Can Now Leverage the Customizable, Enterprise-Scale Cybersecurity Solution from Black Lotus on CloudSigma’s cloud. Palo Alto, Calif. – November 4, 2014 – CloudSigma, a public cloud infrastructure-as-a-service (IaaS) provider with advanced hybrid hosting solutions, today announced a partnership with Black Lotus, a leader in availability security and provider of distributed denial of service (DDoS) protection. As DDoS attacks …
PSA: Patch your servers against CVE-2014-6271
Today a vulnerability was discovered in Bash, the shell used on most Linux distributions. We strongly recommend that you patch your servers as soon as possible against this. Debian / Ubuntu [bash light=”true”] $ sudo apt-get update && sudo apt-get install -y bash [/bash] CentOS / RedHat Enterprise Linux / Fedora [bash light=”true”] $ yum update bash [/bash] Make sure …
CloudSigma.com is now fully protected by SSL
At CloudSigma, we take security very serious. Since the very beginning, all our web app (the cloud control panel) and our API has been configured to accept SSL connections only. We’re now happy to announce that we’ve also moved our regular marketing site (i.e. this) to only run SSL as well. For those not familiar SSL, it’s a way to …
Web surfing? After Heartbleed make sure you update your SSL certificate setting in your browsers
With the recent Heartbleed security vulnerability affecting a significant part of the world’s secured internet traffic, most companies have been taking the precaution of renewing their SSL certificates as it is possible to compromise the keys for these certificates using the Heartbleed vulnerability. Unfortunately, many browsers won’t automatically check for revoked certificates (including the most popular Google Chrome). We highly …
Make sure to patch your servers for the Heartbleed bug
Today there was a major security announcement that affected a large number of online services. In short, if you’re running a website that is using OpenSSL (i.e. most websites that are secured by SSL) you are likely to be affected. You can read more about the bug here. You can also check if you’re exposed to this vulnerability using this …
NTP Amplification Attacks, the latest DDoS weapon (and how to protect yourself from it)
During the last few months, we’ve seen an increased amount of NTP amplification attacks. It’s an attack technique, similar to the previous wave of DNS amplification attacks, mostly used by script kiddies (but also by black hats) to take sites/servers offline. The technique behind of the attack is pretty simple; using public NTP servers, the attacker sends a request and …
CloudSigma Makes it Easier for Customers to Enhance Security with infrastructure Level Firewalls
Zurich, Switzerland – November 21, 2013 – CloudSigma announces the general availability of advanced network policy management across all its cloud locations. With this new feature, customers can create, manage and apply enterprise-grade networking policies in relation to their cloud infrastructure in a fully integrated way. By removing complexity and stressing usability, CloudSigma’s new networking policy features enable customers to …
Steamrolling Cloud Adoption Obstacles with CloudSigma 2.0
When CloudSigma was founded as a pure-cloud IaaS provider in 2009, much of its value proposition centered around dispelling common gripes companies had with the existing public cloud platforms. This included everything from restrictions placed on application and operating system deployments to inefficient pricing packages and bundled resources. Now, four years later, we’re continuing to knock down common barriers to …