We are proud to say that our clients’ databases, websites and emails are uncompromised as the world crumbles around others. As the storm around HeartBleed arose, our reseller partners, SingTel, were the first to alert us of the vulnerability.
“Hi DropMyEmail team,
We have aware that there is a risk of vulnerable to the Heartbleed attack recently. Please refer to this link for further information.
However we need your help to :
· Check through all your servers tomake sure it is free of vulnerable to HeartBleed.
It is a good practise that all the parties to take this precautious action to protect ourselves.
Thanks & warmest regards
To be doubly sure, we took up their advice to run it through SSL Labs again – the gold standard to check on the security of your websites and databases.
Here are our results:
i. 100 (Grade A) – Certificate
Dropmysite uses a valid and trusted cert from GoDaddy. That is important as you want a trustworthy third party company (like GoDaddy) to prove that your cert is valid.
ii. 70 (Grade B) – Protocol Support
Protocol Support – Dropmysite support existing protocols and in no time, even the newest ones.
iii. 90(Grade A) – Key Exchange
Dropmysite uses a very strong private key. And our key exchange protocol follows the standard, which means it is secure. It makes it hard for hackers to get our keys, and even if they do, they will have a hard time decrypting it.
iv. 90(Grade A) – Cipher Strength
Related to the earlier point, Dropmysite uses a strong private key, which makes it unpractical for hackers to decrypt it.
The explanation behind the ratings can be found here. https://www.ssllabs.com/downloads/SSL_Server_Rating_Guide_2009e.pdf
To have one of Asia’s biggest telecommunication firm confirm that our security efforts was a great achievement. Also, to have validation from SSL Labs, a global leader in assessing computer risk give us an overall distinction is a great feeling.
We have to thank our hardworking engineers for their effort in building such a secure product. Their tireless hours have paid off even against a Heartbleed scare that has been largely unnoticed.
We would also like to thank our clients for sticking with Dropmysite and Dropmyemail’s services in backing up their emails, websites and databases. Rest assured that we remain resolute in protecting your data by continuing to improve our processes.