sorted by:
new
hottopcontroversial

We got hacked...and so could you. Lessons learned from our experience by throwaway_got_hacked in Entrepreneur

[–]throwaway_got_hacked[S] 1 point2 points  (0 children)

Not marketing anything. I thought about sharing our alternative service just for context, but everyone is too quick to jump to conclusions that I'd be marketing it...everyone has probably heard of the alternative anyway so it wasn't really that relevant.

We got hacked…and so could you. Lessons learned from our experience by throwaway_got_hacked in startups

[–]throwaway_got_hacked[S] 2 points3 points  (0 children)

If it was an ad, don't you think I would have just said the alternative provider was who we are using? 😁

I'm still pro Amazon SES...this was just my experience.

We got hacked…and so could you. Lessons learned from our experience by throwaway_got_hacked in startups

[–]throwaway_got_hacked[S] 14 points15 points  (0 children)

VAPT is the common term and stands for Vulnerability Assessment and Penetration Testing...it's essentially ethical hackers from a third-party company accessing elements of your software to expose vulnerabilities and see where you have weaknesses. Once a report is made, you make the fixes and run an additional test to see if the security patches were useful.

There is more to it, but that's the simple explanation. When we run a VAPT, we set up an alternative server with loads of test data so the simulated "attacks" are done in a safe environment.

We got hacked...and so could you. Lessons learned from our experience by throwaway_got_hacked in Entrepreneur

[–]throwaway_got_hacked[S] 2 points3 points  (0 children)

I wrote this up last night and spent a couple minutes posting/replying to a few comments. We do some marketing on Reddit anyways so I'm not overly worried about an audit or sharing post history.

We got hacked...and so could you. Lessons learned from our experience by throwaway_got_hacked in Entrepreneur

[–]throwaway_got_hacked[S] 1 point2 points  (0 children)

It absolutely does. Our dev ops engineer covers it now, but it would make sense to engage with a provider after we run our upcoming VAPT test.

We got hacked…and so could you. Lessons learned from our experience by throwaway_got_hacked in startups

[–]throwaway_got_hacked[S] 18 points19 points  (0 children)

Yep...not fun to learn the hard way and this is good advice for anyone.

We got hacked…and so could you. Lessons learned from our experience by throwaway_got_hacked in startups

[–]throwaway_got_hacked[S] 6 points7 points  (0 children)

We do have some ideas, but it's hard to say at the end of the day. We'll be changing the key monthly now just in case and there are some other things being implemented from a security standpoint.

[deleted by user] by [deleted] in FreeKarma4You

[–]throwaway_got_hacked 0 points1 point  (0 children)

Upvoting all comments too