Help
RSS
API
Feed
Maltego
Contact
Domain > security.crowdfiber.io
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2020-05-22
199.232.78.217
(
ClassC
)
2024-10-03
151.101.22.217
(
ClassC
)
Port 443
HTTP/1.1 200 OKConnection: keep-aliveContent-Length: 20385Server: nginx/1.17.6Content-Type: text/html; charsetutf-8X-Powered-By: ExpressCache-Control: public, max-age0ETag: W/4fa1-Ek+pUrHxs/6QATyceaYTgyPkVN0Accept-Ranges: bytesAge: 0Date: Thu, 03 Oct 2024 22:49:43 GMTVia: 1.1 varnishX-Served-By: cache-bfi-krnt7300076-BFIX-Cache: MISSX-Cache-Hits: 0X-Timer: S1727995783.433723,VS0,VE319Vary: Accept-EncodingStrict-Transport-Security: max-age31557600 !DOCTYPE html>html langen>head> meta charsetutf-8 /> meta http-equivX-UA-Compatible contentIEedge /> title>CrowdFiber Security/title> meta nameHandheldFriendly contentTrue /> meta nameviewport contentwidthdevice-width, initial-scale1.0 /> link relstylesheet typetext/css href/assets/built/screen.css?v1e3c599238 /> link relshortcut icon href/favicon.ico typeimage/x-icon /> link relcanonical hrefhttp://localhost:2368/ /> meta namereferrer contentno-referrer-when-downgrade /> meta propertyog:site_name contentCrowdFiber Security /> meta propertyog:type contentwebsite /> meta propertyog:title contentCrowdFiber Security /> meta propertyog:url contenthttp://localhost:2368/ /> meta propertyog:image contenthttps://static.ghost.org/v3.0.0/images/publication-cover.png /> meta propertyarticle:publisher contenthttps://www.facebook.com/crowdfiber /> meta nametwitter:card contentsummary_large_image /> meta nametwitter:title contentCrowdFiber Security /> meta nametwitter:url contenthttp://localhost:2368/ /> meta nametwitter:image contenthttps://static.ghost.org/v3.0.0/images/publication-cover.png /> meta nametwitter:site content@crowdfiber /> meta propertyog:image:width content2709 /> meta propertyog:image:height content938 /> script typeapplication/ld+json>{ @context: https://schema.org, @type: Article, publisher: { @type: Organization, name: CrowdFiber Security, url: http://localhost:2368/, logo: { @type: ImageObject, url: http://localhost:2368/content/images/2020/05/CrowdFiber-logo-final-transparent-original.png } }, author: { @type: Person, name: Ellery Durgin, sameAs: }, headline: CrowdFiber Security, url: https://localhost:2368/, mainEntityOfPage: { @type: WebPage, @id: http://localhost:2368/ }} /script> meta namegenerator contentGhost 3.16 /> link relalternate typeapplication/rss+xml titleCrowdFiber Security hrefhttps://localhost:2368/rss/ />/head>body classhome-template> div classsite-wrapper> header classsite-home-header> style typetext/css> .responsive-header-img { background-image: url(https://static.ghost.org/v3.0.0/images/publication-cover.png); } @media(max-width: 1000px) { .responsive-header-img { background-image: url(https://static.ghost.org/v3.0.0/images/publication-cover.png); background-image: -webkit-image-set(url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 1x, url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 2x); background-image: image-set(url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 1x, url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 2x); } } @media(max-width: 600px) { .responsive-header-img { background-image: url(https://static.ghost.org/v3.0.0/images/publication-cover.png); background-image: -webkit-image-set(url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 1x, url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 2x); background-image: image-set(url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 1x, url(https://static.ghost.org/v3.0.0/images/publication-cover.png) 2x); } }/style>div classouter site-header-background responsive-header-img> div classinner> nav classsite-nav> div classsite-nav-left-wrapper> div classsite-nav-left> a classsite-nav-logo hrefhttps://localhost:2368>img src/content/images/2020/05/CrowdFiber-logo-final-transparent-original.png altCrowdFiber Security />/a> div classsite-nav-content> ul classnav rolemenu> li classnav-home rolemenuitem>a hrefhttps://crowdfiber.com>Home/a>/li>/ul> /div> /div> /div> div classsite-nav-right> div classsocial-links> a classsocial-link social-link-fb hrefhttps://www.facebook.com/crowdfiber titleFacebook target_blank relnoopener>svg viewBox0 0 32 32 xmlnshttp://www.w3.org/2000/svg>path dM16 0c8.837 0 16 7.163 16 16s-7.163 16-16 16S0 24.837 0 16 7.163 0 16 0zm5.204 4.911h-3.546c-2.103 0-4.443.885-4.443 3.934.01 1.062 0 2.08 0 3.225h-2.433v3.872h2.509v11.147h4.61v-11.22h3.042l.275-3.81h-3.397s.007-1.695 0-2.187c0-1.205 1.253-1.136 1.329-1.136h2.054V4.911z />/svg>/a> a classsocial-link social-link-tw hrefhttps://twitter.com/crowdfiber titleTwitter target_blank relnoopener>svg xmlnshttp://www.w3.org/2000/svg viewBox0 0 32 32>path dM30.063 7.313c-.813 1.125-1.75 2.125-2.875 2.938v.75c0 1.563-.188 3.125-.688 4.625a15.088 15.088 0 0 1-2.063 4.438c-.875 1.438-2 2.688-3.25 3.813a15.015 15.015 0 0 1-4.625 2.563c-1.813.688-3.75 1-5.75 1-3.25 0-6.188-.875-8.875-2.625.438.063.875.125 1.375.125 2.688 0 5.063-.875 7.188-2.5-1.25 0-2.375-.375-3.375-1.125s-1.688-1.688-2.063-2.875c.438.063.813.125 1.125.125.5 0 1-.063 1.5-.25-1.313-.25-2.438-.938-3.313-1.938a5.673 5.673 0 0 1-1.313-3.688v-.063c.813.438 1.688.688 2.625.688a5.228 5.228 0 0 1-1.875-2c-.5-.875-.688-1.813-.688-2.75 0-1.063.25-2.063.75-2.938 1.438 1.75 3.188 3.188 5.25 4.25s4.313 1.688 6.688 1.813a5.579 5.579 0 0 1 1.5-5.438c1.125-1.125 2.5-1.688 4.125-1.688s3.063.625 4.188 1.813a11.48 11.48 0 0 0 3.688-1.375c-.438 1.375-1.313 2.438-2.563 3.188 1.125-.125 2.188-.438 3.313-.875z/>/svg>/a> /div> a classrss-button hrefhttps://feedly.com/i/subscription/feed/https://localhost:2368/rss/ titleRSS target_blank relnoopener>svg xmlnshttp://www.w3.org/2000/svg viewBox0 0 24 24>circle cx6.18 cy17.82 r2.18/>path dM4 4.44v2.83c7.03 0 12.73 5.7 12.73 12.73h2.83c0-8.59-6.97-15.56-15.56-15.56zm0 5.66v2.83c3.9 0 7.07 3.17 7.07 7.07h2.83c0-5.47-4.43-9.9-9.9-9.9z/>/svg>/a> /div>/nav> div classsite-header-content> h1 classsite-title> img classsite-logo src/content/images/size/w1000/2020/05/CrowdFiber-logo-final-transparent-original.png altCrowdFiber Security /> /h1> h2 classsite-description>/h2> /div> /div> /div>/header>main idmain> div classinner> article classpost-full post featured no-image page no-image> header classpost-full-header> h1 classpost-full-title>Security Overview/h1> /header> section classpost-full-content> div classpost-content> p>em>Security is an essential tenet of CrowdFiber operations. This document provides an overview of some of the principles and attributes of our security strategy and tactics. For additional questions regarding security or to report a concern, please contact /em>a hrefmailto:security@crowdfiber.com>em>security@crowdfiber.com/em>/a>em>./em>/p>h2 idemployee-and-physical-security>Employee And Physical Security/h2>h3 idconfidentiality>Confidentiality/h3>p>CrowdFiber employees hold your data in the strictest confidentiality. We have strict technical and business controls to keep your data secure. All CrowdFiber employees and contractors are required to sign confidentiality agreements as a condition of employment./p>h3 idsocial-engineering-awareness>Social Engineering Awareness/h3>p>CrowdFiber runs regular social engineering training and reviews with employees and contractors. These include active attempts to exploit information from employees. Security is the responsibility of all employees./p>h3 idhiring-processes>Hiring Processes/h3>p>CrowdFiber follows a stringent employee hiring process to screen all employees and contractors for potential security risks. CrowdFiber requires an in-person interview for any employee or contractor that will have access to sensitive information./p>h3 idphysical-security>Physical Security/h3>p>CrowdFiber uses video surveillance, independent access control systems between general and sensitive areas of our facility, monitored fire, and burglar alarms systems. CrowdFiber performs audits and penetration tests of our physical security on at least a quarterly basis./p>h2 idprotection>Protection/h2>h3 idbackups>Backups/h3>p>We protect your data by regular backups to diverse locations. Backup data is encrypted in transit and at rest ensuring that your data is protected in the event of a catastrophic failure./p>p>Related Policies: br>a hrefhttps://security.crowdfiber.io/acceptable-encryption-policy/>Acceptable Encryption Policy/a>/p>h3 idsource-code>Source Code/h3>p>CrowdFiber uses modern security and code analysis tools such as Brakeman, Github Security Alerts and RuboCop to ensure a reliable and secure platform. Additionally, all code must go through a peer-review process before being released into production systems. All Source code is stored in Github and requires two-factor authentication/p>p>Related Policies:br>a hrefhttps://security.crowdfiber.io/source-code-review-policy/>Source Code Review Policy/a>/p>h3 idnetwork-security>Network Security/h3>p>CrowdFiber uses a multilayer approach to our network security including firewalls at the edges of our network, firewalls on each host, honeypots, and other countermeasures to protect our internal network and detect new threats./p>p>Related Policies:br>a hrefhttps://security.crowdfiber.io/router-and-switch-security-policy/>Router And Switch Security Policy/a>br>a hrefhttps://security.crowdfiber.io/lab-security-policy/>Lab Security Policy/a>/p>h3 idtraffic-encryption>Traffic Encryption/h3>p>All information you and your customers send and receive with CrowdFiber is fully encrypted. CrowdFiber uses SSL certificates issued by Sectigo, GlobalSign and Let’s Encrypt for public-facing traffic. /p>p>Any documents uploaded to CrowdFiber are encrypted at rest using AES-256 with keys stored in a separate location from the file. All database connections are encrypted./p>p>Related Policies: br>a hrefhttps://security.crowdfiber.io/database-authentication-credentials-policy/>Database Authentication Credentials Policy/a>br>a hrefhttps://security.crowdfiber.io/acceptable-encryption-policy/>Acceptable Encryption Policy/a>/p>h3 iddata-center-selection>Data Center Selection/h3>p>CrowdFiber performs a site visit to review all data centers it uses and to verify our minimum required power, network, and redundancy requirements. We only use production data centers that meet the following standards: /p>p>SSAE 16 SOC 2 Type 2/p>p>PCI DSS compliant/p>p>EU-U.S. Privacy Shield./p>h3 idavailability>Availability/h3>p>We are committed to being a highly available service for our customers and to building and operating our software in a fault-tolerant way. As a minimum standard, CrowdFiber provides 99.9% uptime measured monthly, excluding weekends, holidays and scheduled maintenance. See your sales agreement for particular details regarding availability./p>h2 idcompliance>Compliance/h2>h3 idpci-compliance>PCI Compliance/h3>p>We do not capture, process, or store payment information such as credit card, billing zip, or CSC. The payment transaction occurs directly between the end-user client device and our payment processor, Stripe. Our servers only receive a token and non-confidential data for proof of payment. All funds captured are deposited directly into each customers Stripe account controlled and managed by each of our customers. We follow the requirements stated here: https://stripe.com/docs/security for a PCI compliant system./p>h3 idcpni-compliance>CPNI Compliance/h3>p>We have established operating procedures that ensure compliance with the Federal Communication Commission regulations regarding the protection of customer proprietary network information (“CPNI”)./p>h3 idlogging-and-retention>Logging And Retention/h3>p>We maintain an extensive, centralized logging environment that enables us to collect security, monitoring, availability, access, and other metrics about the CrowdFiber services. CrowdFiber maintains logs for at least 90 days from all production systems.br>br>Related Policies:br>a hrefhttps://security.crowdfiber.io/information-logging-standard-2/>Information Logging Standard/a>/p>h1 idincident-management-and-vulnerability-disclosure>Incident Management And Vulnerability Disclosure/h1>h3 idincident-management-response>Incident Management & Response/h3>p>While we have never experienced such an event, if there is a security breach in the future, we will promptly notify you of any unauthorized access to your customer data. We have the expertise in place to assess any impacts and quickly take corrective and preventative actions to mitigate such an issue as much as possible./p>p>Related Polices:br>a hrefhttps://security.crowdfiber.io/data-breach-policy/>Data Breach Policy/a>/p> /div> /section> /article> /div>/main>div classouter site-nav-main> div classinner> nav classsite-nav> div classsite-nav-left-wrapper> div classsite-nav-left> a classsite-nav-logo hrefhttps://localhost:2368>img src/content/images/2020/05/CrowdFiber-logo-final-transparent-original.png altCrowdFiber Security />/a> div classsite-nav-content> ul classnav rolemenu> li classnav-home rolemenuitem>a hrefhttps://crowdfiber.com>Home/a>/li>/ul> /div> /div> /div> div classsite-nav-right> div classsocial-links> a classsocial-link social-link-fb hrefhttps://www.facebook.com/crowdfiber titleFacebook target_blank relnoopener>svg viewBox0 0 32 32 xmlnshttp://www.w3.org/2000/svg>path dM16 0c8.837 0 16 7.163 16 16s-7.163 16-16 16S0 24.837 0 16 7.163 0 16 0zm5.204 4.911h-3.546c-2.103 0-4.443.885-4.443 3.934.01 1.062 0 2.08 0 3.225h-2.433v3.872h2.509v11.147h4.61v-11.22h3.042l.275-3.81h-3.397s.007-1.695 0-2.187c0-1.205 1.253-1.136 1.329-1.136h2.054V4.911z />/svg>/a> a classsocial-link social-link-tw hrefhttps://twitter.com/crowdfiber titleTwitter target_blank relnoopener>svg xmlnshttp://www.w3.org/2000/svg viewBox0 0 32 32>path dM30.063 7.313c-.813 1.125-1.75 2.125-2.875 2.938v.75c0 1.563-.188 3.125-.688 4.625a15.088 15.088 0 0 1-2.063 4.438c-.875 1.438-2 2.688-3.25 3.813a15.015 15.015 0 0 1-4.625 2.563c-1.813.688-3.75 1-5.75 1-3.25 0-6.188-.875-8.875-2.625.438.063.875.125 1.375.125 2.688 0 5.063-.875 7.188-2.5-1.25 0-2.375-.375-3.375-1.125s-1.688-1.688-2.063-2.875c.438.063.813.125 1.125.125.5 0 1-.063 1.5-.25-1.313-.25-2.438-.938-3.313-1.938a5.673 5.673 0 0 1-1.313-3.688v-.063c.813.438 1.688.688 2.625.688a5.228 5.228 0 0 1-1.875-2c-.5-.875-.688-1.813-.688-2.75 0-1.063.25-2.063.75-2.938 1.438 1.75 3.188 3.188 5.25 4.25s4.313 1.688 6.688 1.813a5.579 5.579 0 0 1 1.5-5.438c1.125-1.125 2.5-1.688 4.125-1.688s3.063.625 4.188 1.813a11.48 11.48 0 0 0 3.688-1.375c-.438 1.375-1.313 2.438-2.563 3.188 1.125-.125 2.188-.438 3.313-.875z/>/svg>/a> /div> a classrss-button hrefhttps://feedly.com/i/subscription/feed/https://localhost:2368/rss/ titleRSS target_blank relnoopener>svg xmlnshttp://www.w3.org/2000/svg viewBox0 0 24 24>circle cx6.18 cy17.82 r2.18/>path dM4 4.44v2.83c7.03 0 12.73 5.7 12.73 12.73h2.83c0-8.59-6.97-15.56-15.56-15.56zm0 5.66v2.83c3.9 0 7.07 3.17 7.07 7.07h2.83c0-5.47-4.43-9.9-9.9-9.9z/>/svg>/a> /div>/nav> /div>/div> footer classsite-footer outer> div classsite-footer-content inner> section classcopyright>a hrefhttps://localhost:2368>CrowdFiber Security/a> © 2024/section> nav classsite-footer-nav> a hrefhttps://localhost:2368>Latest Posts/a> a hrefhttps://www.facebook.com/crowdfiber target_blank relnoopener>Facebook/a> a hrefhttps://twitter.com/crowdfiber target_blank relnoopener>Twitter/a> a hrefhttps://ghost.org target_blank relnoopener>Ghost/a> /nav> /div> /footer> /div> script srchttps://code.jquery.com/jquery-3.4.1.min.js integritysha256-CSXorXvZcTkaix6Yvo6HppcZGetbYMGWSFlBw8HfCJo crossoriginanonymous> /script> script src/assets/built/casper.js?v1e3c599238>/script> script> // Parse the URL parameter function getParameterByName(name, url) { if (!url) url window.location.href; name name.replace(/\\/g, \\$&); var regex new RegExp(?& + name + ((^*)|&|#|$)), results regex.exec(url); if (!results) return null; if (!results2) return ; return decodeURIComponent(results2.replace(/\+/g, )); } // Give the parameter a variable name var action getParameterByName(action); $(document).ready(function () { if (action subscribe) { $(body).addClass(subscribe-success); } $(.subscribe-success-message .subscribe-close).click(function () { $(.subscribe-success-message).addClass(close); }); // Reset form on opening subscrion overlay $(.subscribe-button).click(function() { $(.subscribe-overlay form).removeClass(); $(.subscribe-email).val(); }); }); /script> script> // NOTE: Scroll performance is poor in Safari // - this appears to be due to the events firing much more slowly in Safari. // Dropping the scroll event and using only a raf loop results in smoother // scrolling but continuous processing even when not scrolling $(document).ready(function () { var nav document.querySelector(.site-nav-main .site-nav); var feed document.querySelector(.post-feed); var lastScrollY window.scrollY; var lastWindowHeight window.innerHeight; var lastDocumentHeight $(document).height(); var ticking false; function onScroll() { lastScrollY window.scrollY; requestTick(); } function onResize() { lastWindowHeight window.innerHeight; lastDocumentHeight $(document).height(); requestTick(); } function requestTick() { if (!ticking) { requestAnimationFrame(update); } ticking true; } function update() { var trigger feed.getBoundingClientRect().top + window.scrollY; var progressMax lastDocumentHeight - lastWindowHeight; // show/hide nav if (lastScrollY > trigger - 20) { nav.classList.add(fixed-nav-active); } else { nav.classList.remove(fixed-nav-active); } ticking false; } window.addEventListener(scroll, onScroll, { passive: true }); window.addEventListener(resize, onResize, false); update(); });/script> /body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]