• Hello and welcome! Register to enjoy full access and benefits:

    • Advertise in the Marketplace section for free.
    • Get more visibility with a signature link.
    • Company/website listings.
    • Ask & answer queries.
    • Much more...

    Register here or log in if you're already a member.

  • 🎉 WHV has crossed 72000 (72k) monthly views (unique) and 272000 clicks per month, as per Google Analytics! Thank you for your support! 🎉

Memory-Scraping Attacks: Are Your Hosting Providers Prepared?

johny899

johny899

Member
Content Writer
Messages
1,068
Reaction score
3
Points
43
Balance
$121.0USD
Do you know about memory-scraping attacks? In short, hackers steal information from a server's memory (as opposed to its hard drive) such as a user's username and/or password or credit card information. The first time I read about this type of attack, I was amazed—and terrified! The thought of having a server broken into without leaving a trace on the server's hard drive is quite frightening.

How Serious Is Memory-Scraping Attacks?​

The real danger of these types of attacks is that most security tools cannot detect them. Because the data being stolen from memory only exists in RAM for a brief period of time. Security software such as firewalls and antivirus products look at files and network traffic, but they do not monitor volatile memory.

It raises the question of how many hosting companies can effectively monitor these types of attacks without examine their customers' private data.

Protection of Your Data by Hosting Providers​

Not all hosting providers are created equal in terms of protecting your data. Some key ways to protect your data through hosting providers include:
  • Monitoring for unusual activity on a real-time basis via memory checks, without the need for access to private information.
  • Hardware Isolation — preventing hackers from accessing multiple customers’ memory by isolating their hardware.
  • Frequent information security assessments — to identify vulnerabilities that may not be apparent until a perpetrator attempts to access them or has already accessed them.
If your website contains sensitive information, check with your host about the methods that protect against memory scraping attacks. Do not just assume that the hosting company will protect the sensitive data stored on their platform.

My Thoughts​

While most hosting companies are working towards being more secure, they are not prepared the majority of the time. Larger cloud-based companies tend to be better prepared than smaller hosting companies. However, I recommend encrypting sensitive data, as much as possible, and using memory as little as possible to store sensitive information. Better to be overly cautious and prepared, than to risk losing access to all of your sensitive data.
 
You must log in or register to reply here.
HostingNAP Ad

Support / Help Desk

Blog - (WHV)

Hosting Reviews

Navigation

  1. WHV Forums
    1. WHV - Announcements
    2. General Discussion
    3. Introduction
    4. Web Hosting Forum
    5. Help
    6. News
  2. Marketplace
    1. VPS Offers
    2. Dedicated Server Offers
    3. Shared Hosting Offers
    4. Reseller Hosting Offers
    5. Other Offers (Not Hosting)
    6. Domain Offers
  3. Web Hosting Discussion
    1. Hosting Software & Control Panels
    2. Other Hosting Tutorials
    3. Reviews
    4. Articles
    5. Offtopic
  4. Web Hosting Tutorials
    1. cPanel Tutorials
    2. WHM Reseller Tutorials
    3. DirectAdmin Tutorials
    4. Blesta Tutorials
    5. WHMCS Tutorials
  5. Hosting Extensions
    1. WHMCS Market
    2. Blesta Market
    3. HostBill Market
Top