educational

Software Standards and Vulnerabilities

The adult industry was among the early adopters of that 1990's technology craze called the Internet and in the almost 19 years since Tim Berners-Lee sent the first WWW communication, the online adult industry has seen a lot of changes. The adult industry has been on the cutting edge of many of the technologies that are today commonplace; things like streaming video, active server pages and content on demand are just a few that come to mind.

For many years there was a certain uneasy understanding between the hacker community and many adult content providers. Our worst concern generally was a user posting his log-on credentials and having a flood of nonpaying users spider our sites and vacuum up megabytes of our content. To prove the point of this strange alliance I offer the following example.

I was recently at a conference where I met the owner of a credit card payment program. He bragged to me how they challenged the hacking community to find the weaknesses in their software, which some hackers promptly did. The hackers infiltrated into the very heart of this payment system and left their "calling card." The business owner then offered to pay them to tighten the security of his software.

Am I the only one who sees a problem with this? Do you REALLY want to give unnamed hackers from unknown foreign countries with questionable motives the keys to your kingdom?

The final irony is that I was a PCI auditor at the time and this business owner lectured me on what his rights were and which regulations he had to follow. I wonder if he has a better awareness now of what data breaches are and whether or not he is still in business.

The moral of this story is that we must all be extremely careful about what software we use on our websites. The sites are our livelihood and protecting them should be something that we give more than just passing thought to.

Fortunately the online industry has matured to the point where there are many different choices for payment processing and the PCI DSS folks have provided a link for users to check to see if their PCI software is compliant.

But payment processing is only one of many pieces of software that run on web servers. A typical server will have a database (housing pictures, videos and audio), another database with current users and their passwords (and perhaps even more information about them), a streaming video server (or service) and web traffic analytical software, to mention only a few.

I suggest that everyone running a website take a moment to check their software and see if it shows up on watch lists of products with problems. You can do this online by typing in the name of the software you are investigating. This site will give you a list of vulnerabilities that exist (if any) and how dangerous they are.

If your software yields results that you don't understand or if the software has vulnerabilities that make you uncomfortable, call you computer security expert.

Copyright © 2024 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More Articles

opinion

How to Halt Hackers as Fraud Attacks Rise

For hackers, it’s often a game of trial and error. Bad actors will perform enumeration and account testing, repeating the same test on a system to look for vulnerabilities — and if you are not equipped with the proper tools, your merchant account could be the next target.

Cathy Beardsley ·
profile

VerifyMy Seeks to Provide Frictionless Online Safety, Compliance Solutions

Before founding VerifyMy, Ryan Shaw was simply looking for an age verification solution for his previous business. The ones he found, however, were too expensive, too difficult to integrate with, or failed to take into account the needs of either the businesses implementing them or the end users who would be required to interact with them.

Alejandro Freixes ·
opinion

How Adult Website Operators Can Cash in on the 'Interchange' Class Action

The Payment Card Interchange Fee Settlement resulted from a landmark antitrust lawsuit involving Visa, Mastercard and several major banks. The case centered around the interchange fees charged to merchants for processing credit and debit card transactions. These fees are set by card networks and are paid by merchants to the banks that issue the cards.

Jonathan Corona ·
opinion

It's Time to Rock the Vote and Make Your Voice Heard

When I worked to defeat California’s Proposition 60 in 2016, our opposition campaign was outspent nearly 10 to 1. Nevertheless, our community came together and garnered enough support and awareness to defeat that harmful, misguided piece of proposed legislation — by more than a million votes.

Siouxsie Q ·
opinion

Staying Compliant to Avoid the Takedown Shakedown

Dealing with complaints is an everyday part of doing business — and a crucial one, since not dealing with them properly can haunt your business in multiple ways. Card brand regulations require every merchant doing business online to have in place a complaint process for reporting content that may be illegal or that violates the card brand rules.

Cathy Beardsley ·
profile

WIA Profile: Patricia Ucros

Born in Bogota, Colombia, Ucros graduated from college with a degree in education. She spent three years teaching third grade, which she enjoyed a lot, before heeding her father’s advice and moving to South Florida.

Women In Adult ·
opinion

Creating Payment Redundancies to Maximize Payout Uptime

During the global CrowdStrike outage that took place toward the end of July, a flawed software update brought air travel and electronic commerce to a grinding halt worldwide. This dramatically underscores the importance of having a backup plan in place for critical infrastructure.

Jonathan Corona ·
opinion

The Need for Minimal Friction in Age Verification Technology

In the adult sector, robust age assurance, comprised of age verification and age estimation methods, is critical to ensuring legal compliance with ever-evolving regulations, safeguarding minors from inappropriate content and protecting the privacy of adults wishing to view adult content.

Gavin Worrall ·
opinion

Account-to-Account Payments: The New Banking Disruptor?

So much of our industry relies upon Visa and Mastercard to support consumer payments — and with that reliance comes increased scrutiny by both brands. From a compliance perspective, the bar keeps getting raised until it feels like we end up spending half our time making sure we are compliant rather than growing our business.

Cathy Beardsley ·
profile

WIA Profile: Samantha Beatrice

Beatrice credits the sex positivity of Montreal for ultimately inspiring her to pursue work in adult entertainment. She had many friends working in the industry, from sex workers to production teams, so it felt like a natural fit and offered an opportunity to apply her marketing and social media savvy to support people she truly believes in and wants to see succeed.

Women In Adult ·
Show More