educational

Two Websites are Better Than One

A recent experience prompts me to write these words of warning. In my day job I work in the cyber security field doing work for the Department of Defense (mostly) but also occasionally for the FBI — and it is a recent experience with some zealous folks at the Bureau that prompt these words of caution: we who make our living from the adult entertainment industry must be extra vigilant when it comes to securing our Internet assets.

Earlier this year, the Dallas office of the FBI raided a web hosting facility (co-lo) and carted off more than a million dollars worth of computer equipment, including 220 servers, routers, switches and even power strips (I guess the agents were concerned that the power strips may yield valuable information). Additionally armed FBI agents raided the house of the owner of the co-lo, where they reportedly seized "eight iPods, some belonging to his three children, five XBoxes, a PlayStation3 system and a Wii gaming console, among other equipment. Agents also seized about $200,000 from the owner's business accounts, $1,000 from his teenage daughter's account and more than $10,000 in a personal bank account belonging to the elderly mother of his former comptroller."

This is obviously very bad news for the owner of that co-lo and bad news also for the more than 320 businesses who simply had the bad luck of running their web servers at that business location. At the time this article was written, none of those sites have returned to the web. Pity the business owner who relies on that website for income. Worse still is the information I got from an FBI insider who told me that Branch Offices typically have a 9-12 month backlog of computer forensic work. So I guess sites like Catholic Media Group, Intelmate, Crydontech, a credit card processing service, and a video gaming company among many others will be dark while they scramble to rebuild their sites and get them hosted at another facility. Incidentally, the credit card processor (who was not involved in or associated with the reason for the raid) physically lost $35,000 worth of computer equipment. And what, you may ask, exactly was the FBI's reason for such heavy-handed tactics? Well, I can tell you that it had absolutely nothing to do with the reason they gave to the press: "alleged fraud." The reasons for the vast seizure involved a VoIP company and where the clients were calling. 'Nuff said!

What lessons can we learn from this escapade? I would suggest the following seven recommendations for anyone who earns a living from a website:

  • Never, ever leave your data (content, customer lists, consent forms, site statistics, etc.) on your server for more than a day. Once you perform a full backup, you can perform daily, incremental ones that take up much less time and consume far less bandwidth.
  • Have a DVD ready that can be used to recreate your website on any server you choose.
  • If your budget allows, consider having a "warm backup" — a second web server that duplicates all transactions from the main site and can be used as the primary site in the case the primary becomes unavailable — located at another hosting facility at least two states away (more on this in a bit).
  • The 'two state rule' is a good rule for surviving natural disasters, power outages, etc.
  • The FBI is a federal agency and its search and seizure warrants are valid in all 50 states. However, unless they are specifically targeting you, the chances that both data centers will be raided simultaneously are extremely small. If you feel that the FBI may be targeting you, however, locate your servers where they can't get them. Servers located outside the country obviously cannot be raided by the FBI.
  • Keep a copy of your web hosting contract handy and see what provisions exist in case the co-lo suffers a similar kind of loss.
  • Minimize downtime, even if this means hosting your site in your garage. It can take days for a change in your site's IP address to propagate across the web and you need to make sure to do everything possible to get back online as soon as possible.

We'll watch and see if little drops of truth dribble out of this Dallas case.

Related:  

Copyright © 2024 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More Articles

opinion

How to Halt Hackers as Fraud Attacks Rise

For hackers, it’s often a game of trial and error. Bad actors will perform enumeration and account testing, repeating the same test on a system to look for vulnerabilities — and if you are not equipped with the proper tools, your merchant account could be the next target.

Cathy Beardsley ·
profile

VerifyMy Seeks to Provide Frictionless Online Safety, Compliance Solutions

Before founding VerifyMy, Ryan Shaw was simply looking for an age verification solution for his previous business. The ones he found, however, were too expensive, too difficult to integrate with, or failed to take into account the needs of either the businesses implementing them or the end users who would be required to interact with them.

Alejandro Freixes ·
opinion

How Adult Website Operators Can Cash in on the 'Interchange' Class Action

The Payment Card Interchange Fee Settlement resulted from a landmark antitrust lawsuit involving Visa, Mastercard and several major banks. The case centered around the interchange fees charged to merchants for processing credit and debit card transactions. These fees are set by card networks and are paid by merchants to the banks that issue the cards.

Jonathan Corona ·
opinion

It's Time to Rock the Vote and Make Your Voice Heard

When I worked to defeat California’s Proposition 60 in 2016, our opposition campaign was outspent nearly 10 to 1. Nevertheless, our community came together and garnered enough support and awareness to defeat that harmful, misguided piece of proposed legislation — by more than a million votes.

Siouxsie Q ·
opinion

Staying Compliant to Avoid the Takedown Shakedown

Dealing with complaints is an everyday part of doing business — and a crucial one, since not dealing with them properly can haunt your business in multiple ways. Card brand regulations require every merchant doing business online to have in place a complaint process for reporting content that may be illegal or that violates the card brand rules.

Cathy Beardsley ·
profile

WIA Profile: Patricia Ucros

Born in Bogota, Colombia, Ucros graduated from college with a degree in education. She spent three years teaching third grade, which she enjoyed a lot, before heeding her father’s advice and moving to South Florida.

Women In Adult ·
opinion

Creating Payment Redundancies to Maximize Payout Uptime

During the global CrowdStrike outage that took place toward the end of July, a flawed software update brought air travel and electronic commerce to a grinding halt worldwide. This dramatically underscores the importance of having a backup plan in place for critical infrastructure.

Jonathan Corona ·
opinion

The Need for Minimal Friction in Age Verification Technology

In the adult sector, robust age assurance, comprised of age verification and age estimation methods, is critical to ensuring legal compliance with ever-evolving regulations, safeguarding minors from inappropriate content and protecting the privacy of adults wishing to view adult content.

Gavin Worrall ·
opinion

Account-to-Account Payments: The New Banking Disruptor?

So much of our industry relies upon Visa and Mastercard to support consumer payments — and with that reliance comes increased scrutiny by both brands. From a compliance perspective, the bar keeps getting raised until it feels like we end up spending half our time making sure we are compliant rather than growing our business.

Cathy Beardsley ·
profile

WIA Profile: Samantha Beatrice

Beatrice credits the sex positivity of Montreal for ultimately inspiring her to pursue work in adult entertainment. She had many friends working in the industry, from sex workers to production teams, so it felt like a natural fit and offered an opportunity to apply her marketing and social media savvy to support people she truly believes in and wants to see succeed.

Women In Adult ·
Show More