Yesterday came news that a hacker stole 130 million credit card numbers (no, that’s not a typo) from 7-Eleven, a supermarket chain, and a few other corporate victims. This is the latest in a series of data (in)security headlines, which seem to come along every couple of months. In fact this same hacker was in the news a few years ago, having stolen data from retailers TJ Maxx and Dave & Buster’s.
One thing I find interesting about these stories is that the victims are always traditional offline companies, not cloud software or software-as-a-service providers. There’s a reason for that. Cloud vendors like TrackVia, who make it their business to secure data, invest in and diligently follow security practices that too many non-tech companies overlook.
For example, does anyone think 7-Eleven was….
• Performing daily vulnerability scans provided by an independent security firm?
• Turning off all unnecessary software and services on externally facing servers?
• Closing every port on the firewall by default, and allowing access for individual services only on non-standard ports?
• Using strong passwords on every machine and rotating them regularly?
My guess is 7-Eleven wasn’t doing these things. But cloud software vendors with any heft, including TrackVia, perform all of those security practices and many more routinely. We do it because it’s our business to do so.
The analogy I often use is one of a bank. Businesses store their cash in banks, not on premises, because banks are experts at keeping cash secure. Doesn’t your data deserve the same? Stop storing your data under a mattress! Put it in TrackVia, the world’s safest place for data, and avoid being the 7-Eleven in next month’s headline.
