Security and Cloud RocketProfit Server

Access to our cloud server is done with secure http, via TLS. TLS encryption can help protect web applications from attacks such as data breaches, and DDoS attacks. Additionally, TLS-protected HTTPS is quickly becoming a standard practice for websites. For example, the Google Chrome browser is cracking down on non-HTTPS sites, and everyday Internet users are starting to become more wary of websites that don’t feature the HTTPS padlock icon.

When logging into the server, we check if someone gets their password wrong too many times in a short time frame. In that case, we block their IP address from accessing the server at all. We can usually assume that a legitimate user might type his or her password incorrectly once or twice, but not numerous times. Thus, numerous failed logons can indicate that someone is trying a brute-force password attack (trying to keep guessing the password until he or she gets it right).

We also use Geo-blocking to limit access to the server to countries where we have customers. Some countries have more hackers than other countries, so blocking those countries will significantly reduce the potential of a successful attack against the system.

We have firewall software in place that detects and stops ransomware attacks directly.

The server itself is housed in a commercial data center with multiple independent internet connections as well as backup generators and 24/7 restricted access.