Sirvoy Security Update

23 avril 2018 à 22:40 UTC+2

What is it?

Sirvoy has undergone a major security overhaul this month which promises better auditing of logins and a more hardened approach to system security.

These latest updates will mean that information won’t just be stored but will also provide users with a tool to keep track of potentially suspicious activity related to their account.

Why is it necessary?

We are constantly devising new ways to keep Sirvoy’s user information safe and we advise all our clients to exercise the same vigilance. As hackers continue to create new and devious ways to infiltrate system security measures, it’s important that we evolve even faster to effectively guard against data thieves. These latest measures will help ensure that you and your customer’s information remains safe and secure at all times.

How will it improve security? 

The new security log is visible both on your user profile page (User icon > User profile) and on Settings > User accounts. The user profile page shows a log of all events relating to your account, for example logins and changes in your profile. Similarly the log on the user accounts page displays all events that are related to your customer.

The other change that was made was to harden our security, in other words, how we store passwords and how the login workflow and restore workflow is implemented. Here are some of the highlights:

  • Passwords will expire after a year and will need to be changed. You will be alerted after logging in if you need to change your password. If you don’t change it within a 2 week period you will need to restore your account.
  • Your account can be locked if you (or an attacker) tries to login with the wrong password too many times.
  • We have also improved how we store the passwords with stronger ciphers.

At Sirvoy we take your security seriously. We hope that these new tools will help you and also bring peace of mind that your data is even more secure.