We conduct external security evaluations and penetration tests multiple times every year to ensure our external security position is at its highest level, and this year was no different.
We also engage an external company, SiegeCyber, to do this for us annually.
After a comprehensive external security and penetration test in October, SMB Solutions Cloud Services got an A+ on the security assessment and penetration test report card—the highest score possible!
Here, you can read the executive summary from SiegeCyber and our quick summary below.
The Executive Summary
Siege Cyber conducted a comprehensive penetration testing assessment of SMB Solutions Cloud Services Pty Ltd’s external infrastructure from October 22nd to October 28th, 2024. This assessment combined vulnerability scanning with manual penetration testing to rigorously evaluate SMB Solutions Cloud Services’ external security posture, aiming to identify vulnerabilities and provide recommendations for enhanced protection.
The assessment revealed a strong external security configuration, with no significant vulnerabilities detected. SMB Solutions Cloud Services has implemented effective security controls, demonstrating a well-patched and secure infrastructure that minimises its external footprint. A robust application-layer firewall effectively blocked all unauthorised access attempts during testing, reinforcing the resilience of its public services.
Additionally, a search of dark web and breach databases revealed no newly compromised accounts associated with SMB Solutions Cloud Services within the past year, highlighting effective password management and monitoring practices.
In conclusion, Siege Cyber’s assessment found that SMB Solutions Cloud Services has implemented a secure and well maintained external infrastructure, significantly reducing risk from external threats. Addressing the minor issues identified, such as updating jQuery, strengthening SSL configurations, enforcing HSTS, and removing internal IP disclosures, will further fortify SMB Solutions Cloud Services’ security posture.
By taking these proactive steps, SMB Solutions Cloud Services can build upon its strong external defences, maintaining resilience against evolving cybersecurity threats and ensuring the integrity of its digital environment.
Our Summary
We proudly own our cloud hosting infrastructure, hosted in 4 biometrically secured Equinix data centres worldwide. Protecting that infrastructure, our company data, and, in turn, your personal and professional data is our highest priority.
With minimal improvements to make on our already steadfast cybersecurity systems – tied mainly to getting all of our customers on to the latest version of SAP Business One, we (and our external auditors and insurers) are extremely happy to be one of the most secure SAP Business One Cloud hosting environments available globally.
If you have any questions about our cybersecurity practices, partner vendors, or how we can help you protect your digital business, contact our support team today!