-
Big target for the bad guys
23 Sep 2008I just heard an ad on my local radio station about MedsFile.com….Knowing what’s going on out there on the Web combined with the silly and careless Web application vulnerabilities I see in my work I cringed when I heard about what this company does. They store all of your medical records online in one convenient location. It’s actually a great idea but there’s certainly some room for abuse.
I’m not picking on MedsFile.com…After all they do have a decent privacy policy – something I’ve written about before. Surely they’re testing their app for vulnerabilities.
My point is to do your own due diligence before giving up all of your personal information with the online businesses you deal with. A privacy policy is easy to post. It’s just a written statement that may or very well may not be enforced by the people who placed it there.
Sure, no security is guaranteed but you at least want to do business with organizations that take it seriously and are actually testing their Web sites/applications the right way.
Resources
Client Testimonials
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”
(IT managed services firm)
I’ve written/co-written 12 books on information security including:
