Supporting our employees and clients through COVID-19

Cyber Security External Vulnerability Scan of Hotbox Studios Web Design, Ecommerce, and Software Hosting Architecture

Tuesday, September 24, 2019

Cyber Security External Vulnerability Scan of Hotbox Studios Web Design, Ecommerce, and Software Hosting Architecture

The web hosting infrastructure we provide for our client's websites, eCommerce solutions, databases and software applications is based on state of the art cloud architecture. We take the privacy and security of the data we hold very seriously; the hardware our hosting architecture runs on is constantly monitored and frequently updated to maintain overall system integrity; operating systems and application code is also scrutinised and optimised as required to avoid any vulnerabilities.

To be certain that user data is secure we regularly instruct an independent Cyber Security firm to conduct an External Vulnerability Scan of the Hotbox Studios Web Design, Ecommerce, and Software Hosting Architecture.

The test includes the following technical checks:

  1. Information Gathering to establish what information is already made available by the network itself that could be used to aid in identifying weaknesses.
  2. Foot-printing establishing the extent and composition of the infrastructure.
  3. Service Probing to identify all open ports, and what services are running on those ports.

The Vulnerability Assessment then includes:

  1. Validation Testing: VPN, DNS, Web and Mail
  2. Research: Knowledge bases, Vulnerability Databases and Local
  3. Passive: Metadata analysis and Traffic Monitoring
  4. Active: Full TCP/UDP Port Scans, Service Scans and Banner Grabbers

The results of the External vulnerability Scan are based on a CVSS (Common Vulnerability Scoring System).

Scores between 0.0 to 0.9 are informational.

Scores between 1.0 to 3.9 are defined as Low-risk issues.

Scores between 4.0 to 6.9 are defined as medium-risk issues and will usually be associated with the obtaining of some piece of specific information enumerated from the system but that could not actually be directly exploited.

Scores between 7.0 to 10.0 are defined as medium-risk issues and will usually be associated with the direct compromise of a system or application for the extraction of production data, system passwords or the introduction of malware.

The results of the 2019 Hotbox Studios Web Design, Ecommerce, and Software Hosting Architecture achieved were (0 being no issues found):

0 Critical
0 High
0 Medium
0 Low
6 Informational

We hope this reassures all Hotbox Studios Web Design, Ecommerce, and Software clients that their data is safe in our cloud hosting architecture.

To find out more please head over to the web hosting area of our website!