Security Warnings: Is Your Site In Danger?

Google has announced that in just a couple of short months Chrome will start showing security warnings on HTTP sites that have any text input fields in them.

Breaking it Down: What Does That Mean, Exactly?

If you have a blog that can be commented on, a newsletter sign up form on your website, members only content that requires a login – anything that is interactive with your users and has an field where people type into on your website will show a warning that it is “NOT SECURE” starting October 1, 2017.

BOTTOM LINE: This WILL effect the users ability to access your website!

Google is the first web browser to jump on board with this, and has been marking login forms, certain websites and credit card forms not secure for a while, but, there was a story earlier this year where Firefox reported already showing these warnings on un-encrypted login pages.

These safety precautions are all steps to ensure a better, secure, internet environment for all users moving forward; making it harder for cyber criminals to intercept information over the web.

These are just the first steps, with websites having forms being the first to be flagged. However, it is the goal to have ALL websites eventually go to HTTPS (sooner than later).

This goal may be closer than you think. We had a client’s entire blog site blocked from being shown at all to users in Europe just last week because it was not an HTTPS site and deemed “NOT SECURE”. This is taking it a step further from just a warning in an input field – the whole site was marked not secure and was not shown to the user at all.

What does this mean for you?

If you are the owner or manager or a website, this affects you, and your website needs to be secure. You can secure your site and prevent these “NOT SECURE” warnings by moving your site to HTTPS. This is done by installing an SSL Certificate.

We did a blog post a while back on how you can get a free SSL certificate From Let’s Encrypt and the benefits that comes with them (I’ll give you a hint: Search Engines love SSL Certificates and your SEO will thank you!).

If you are a current TrevNet Full Service Hosting customer and you’d like to take advantage of a “Let’s Encrypt” FREE SSL Certificate on your site, contact us to get started.

Help! Facebook Spam Messages

Wow, that many people have viewed my profile on Google? Or wait…is it YouTube?

If you have received a private message on Facebook from a friend (and it could be a friend you trust!) with a video that says you’ve received an outrageous amount of views on Google or YouTube (or any other site) with your name on it, they all have one thing in common:

These messages are bogus

I have received several of these in the last few months, here is what they look like:

Look, ma, I’m famous! 595,902 views!! Or…not. This is just a clever phishing scam to get you to click on the link. It’s pretty enticing, right? DON’T DO IT!

What Happens When You Click On The Link:

The message is a scam. There is no video. If you click the link, you will be taken to a fake website designed to look like a Facebook login page.

“What is the harm in that”, you ask? This fake page, asks you to log into Facebook again. It looks identical to Facebook, but it isn’t Facebook. If you login through this page, the scammers steal your information and hijack your Facebook page. After they do this, they start sending private messages to your entire friend list like the one I’ve shown you in the picture above, with the same link you received. Once they have access to your Facebook page, they can post, send and link apps on your behalf.

Criminals can also use this or similar schemes to trick people into downloading malware or installing other apps and malicious browser plugins.

What Do I Do If My Account Has Been Compromised?

Try to secure your account as quickly as possible. The first step is to change your password. Go through all your security settings. It is quick and easy.

Secondary to that, go through your messages and let your friends know (those who were messaged) not to click on the link).

Facebook has some great help links, it is a good idea to see if anything else has been compromised. Most likely an app has been authorized and needs to be removed from your account. I

If you think yours or your friend’s account has been hacked, you can read more about that on Facebook’s help center here.

Website Launch: Riverview Systems Group

Riverview Systems Group, Inc. has been a both a valued client and dear friends over the years. We simply can’t express how much fun it has been working with them and bringing their vision of a new website to life. Using 100% custom design and code all done in-house here at TrevNet, we aimed to streamline the same memorable experience that Riverview brings to its clients.

About the Company

Riverview Systems Group is a leading full-service provider of audio-visual resources. Riverview specializes in the rental, sale, design, installation and implementation of lighting, sound and projection systems for corporate and educational markets. Founded in 1987 by theater technology veterans Chris Thorne and Evan Williams with the goal of providing companies with everything they need to successfully produce engaging and innovative events.

Riverview Systems Group, Inc.
Marks 30th Anniversary with a New Web Experience

Riverview Systems Group, Inc., the award-winning, full-service provider of engaging and innovative live events, has re-launched its corporate website. Unveiled in conjunction with the company’s 30th anniversary, the redesigned site boasts a heightened visual approach and renewed focus on the company’s impressive history of event design and production for top brands around the world. Read More

Connect with Riverview Systems Group

Facebook — https://www.facebook.com/RiverviewSystemsGroup/
Twitter — https://twitter.com/riverviewav1
LinkedIn — https://www.linkedin.com/company/riverview-systems-group-inc-?trk=company_logo

Free SSL Certificates via “Let’s Encrypt”

Today, security and privacy is more important than ever and because of that, more and more are choosing to encrypt their website traffic using SSL Certificates. We are very pleased to announce that all of our fully-managed shared hosting servers now provide access to FREE “Let’s Encrypt” SSL Certificates.

What is “Let’s Encrypt”?

“Let’s Encrypt” is a free, automated, and open certificate authority (CA), run for the public’s benefit. They provide FREE SSL Certificates using a quick and easy process that anyone can take advantage of. TrevNet Media servers are now fully ready to take advantage of this.

How does “Let’s Encrypt” compare to Commercial (paid) SSL Certificates?

From a technical perspective, “Let’s Encrypt” certificates and Commercial SSL Certificates achieve almost the same thing. There are, however, some significant differences you need to be aware of:

Commercial SSL Certificates

  • Commercial SSL Certificates are offered by a trusted CA like Comodo, GoDaddy, etc that provide all types of SSL Certificates.
  • You can also claim for warranty in case of misuse or data-breach.
  • They offer 24×7 online supports via email, chat or call.
  • Recommended for large or Ecommerce Websites.
  • Comes with trust seal/site seal
  • Every SSL comes with warranty (start from $10,000)

“Let’s Encrypt” SSL Certificates

  • “Let’s Encrypt” is a free and open certificate authority that offer Free SSL Certificates for 90 days.
  • Our servers will automatically renew these certificates for you.
  • You can secure your basic website only, but if you deal with online transactions, then it may not be sufficient enough to protect your website. However, “Woo Commerce” (The #1 Ecommerce WordPress Plugin) does recommend it.
  • Apart from this, the free certificate does not offer any warranty in case of misuse or data-breach.

In short; if you want a quick and easy way of getting your website SSL secured for privacy or security reasons, “Let’s Encrypt” is a fantastic FREE option for you. If you are an online retailer, or otherwise require the security, warranty, and support of a commercial certificate, this may be a better option for you.

Great for SEO (Search Engine Optimization)!

About two years ago, Google announced that they were using HTTPS as a “lightweight” ranking signal. If your search rank is really important to the success of your business, switching to HTTPS should help.

What About Certificate Renewals?

We have a process that runs every night to take care of this. It checks the validity of all “Let’s Encrypt” certificates, renews expired certificates, and attempts to issue new certificates for new sub-domains. The process is fully transparent and automated.

What Do I Need To Do Now?

If you’d like to keep your Commercial SSL Certificate, then there is nothing to worry about; business as usual.

If you are a current TrevNet Full Service Hosting customer and you’d like to take advantage of a “Let’s Encrypt” FREE SSL Certificate on your site, contact us to get started.


Sources:
https://www.quora.com/
https://webmasters.googleblog.com/


 

HUGE Google Changes – Is your site ready?

responsive devicesStarting today, April 21, 2015 Google will be making a HUGE algorithm change that will affect all mobile searches.

The new change outranks both Panda and Penguin in terms of scale according to Google’s Webmaster Trends analyst Zineb Ait Bahajji. It is predicted to affect 40% of  all websites. If you haven’t felt the effects of this change, you will soon!

Whether you have a website, landing page or blog, you WILL be affected by this change. The question is…are you ready for it?

We have been preaching about keeping your website up to date for quite some time. Check out our blog post back in 2013 explaining some of the benefits of keeping your site fresh and new.

mobilegeddenThe change will only take about a week to complete and is so significant that April 21st is being referred to by several names including mobilegeddon, mobilepocalyse, mopocalypse or mobocalypse!

The end isn’t [that] near! The best way to figure out whether your site will reap the benefits of this algorithm change (or if you will be penalized after the update), is to analyze your site and Google was generous enough to provide the link for a simple test:

 

https://www.google.com/webmasters/tools/mobile-friendly/

If your site is mobile-friendly, congratulations! You won’t fall victim to these apocalyptic changes. However, if your site doesn’t meet these mobile-friendly standards, it’s time for an update!

Not to worry, we’ve got you covered – contact us by phone, email, telegraph or carrier pigeon and we will be more than happy to get your site up to par.

slide01-imagesThe best way to ensure your site won’t be affected, is to make your site Responsive. Responsive design is the process of creating a single web site that has the ability to adjust its layout, based on the size and orientation of the users display as well as the browser it is being viewed on. Simply meaning, your website “responds” to the device it’s being displayed on for optimal viewing.

We’ve been doing responsive design for a while now, check out some of our favorites:

Aqui Cal-Mex
Pelvic Health and Rehabilitation
Amy Dixon Fitness
Jonathon D Fischer Foundation

Or check out our portfolio for more examples.

Don’t wait until you are no longer competitive in your search rankings. Contact us – we’ve got your back!