5 Tips for Having a Secure Real Estate Website

secure website

This year has had an unprecedented amount of large-scale cyber hacks. No matter who you are, what your job is, or where you live, you are vulnerable.

As more and more business is done online, it is very important to have a secure website.

Are you concerned your real estate website may be vulnerable? Keep reading below for five tips to ensure you stay safe.

1. Keep Up to Date with Your Updates

Keeping current with all updates will ensure you have a safe and secure website that will make you money. Lots of websites get hacked daily simply because of outdated software.

It is very important to update your systems or software as soon as an update becomes available. Don’t even wait a week or a day. Hacking most times now is automated. It’s bots constantly scanning for areas of weakness.

2. Strong Passwords for a Secure Website

Everyone knows it, but few follow through. Passwords should be complex, long, and unique. Passwords should be random. Decrease your chances of being hacked by avoiding using parts of your birthday or your favorite sports team.

Ideally, passwords should be twelve characters or more. Few websites or applications require this length, but they should. Having this length of password significantly lessens the chance someone can guess it in a limited number of attempts.

Finally, do not reuse passwords! Every password you have should be unique.

3. Change Default Settings

Many common software packages and applications are very easy to use, but are pretty unsecured. This is often due to default settings that never get changed. As mentioned, many hacking attacks are automated. Leaving the default settings makes it very easy for the hackers or bots to gain access.

It is easiest to change these settings during installation, but they can also be changed at any point.

4. Control User Access

When you have multiple people involved in your website, it is important they each only have the level of access they need to do their jobs. For example, if someone is going to be writing blog posts, they should never need access to change the website layout.

Real estate companies like venturewestranches.com benefit from this practice. For example, IT support staff should have one level access while property realtors should have less access to certain aspects of the site.

At the lowest level of access, people making accounts to search for a listing should have the bare minimal access with absolutely no editing privileges.

5. Create Proper Backup Procedures

We all know it’s important to make regular backups of our website, but there is a right and a wrong way to do this. Do not store any of your backups on your server.

This will open you up to hackers because there may be out of date plugins in the backup file. Focus on creating a backup strategy that houses the files separate from your main servers.

Final Notes

There you have it. Now you know five great tips to have a secure website. Do you have some other questions about websites? Contact us and we will be glad to help.

5 Tips on Having a Secure Legal Website

Your law firm works hard to secure the issues of your clients, which means you need a data network working just as hard.

Without proper protection, sensitive internal information and case files are valuable targets to internet attacks. Internet hackers can access anything from social security numbers to finances.

This makes it vital to ensure your firm has a secure legal website.

Lawyers aren’t expected to be tech geniuses too, but there are a few things you can do to stay

1. Start from the Top

Who is the senior management at your firm?

If their level of access is available to employees under them, you may be leaving a door open for hackers to walk through. Keep your most valuable information in the safe hands of your higher-ups.

Limit access at different levels of the company and have everyone frequently update their login information. Set time limits for inactive login periods to expire and make sure no passwords are shared or written down.

2. Identify Your Data

Know where you store your data, for how long, and where it comes from.

If everything is on an internal server, consider switching some of your data to a hosting provider. Providers are the professionals on what a secure legal website looks like and how it operates.

Trust them to take care of your data the way clients would go to a Florida Ticket Firm to handle Sunshine State traffic citations.

3. Back It Up

Always have a back-up system running, preferably more than once a day.

Daily back-ups leave you vulnerable to losing an entire 24 hours of work and data. They also give potential hackers a long window of opportunity.

Tighten things up by running hourly back-ups, or have them operate in real-time if possible. The more consistent, the better.

Your hosting provider can help establish a back-up as well, but it is best to have multiple systems storing your data. It’s like a form of insurance for a secure legal website.

4. Use a Firewall

Installing a firewall for your server is like choosing to live in a gated community – it puts a barrier between data and potential threats, like hackers and spammers.

Firewalls can be manually installed in to hardware or operate as a cloud-based system on your software. Once in place, they monitor and filter all incoming information to ensure a secure legal website.

They identify safe information to enter your system and block malicious data from getting through.

5. Stay in the Know

Just as you likely stay updated on policies and procedures in your field of law, you need to brush up on cyber security from time to time.

Hackers and cyber terrorists are advancing their tactics every day. This makes it more urgent to understand your web-safety options.

This can be as easy as replacing your morning paper with reading through a tech site once a week. Or, you may opt for regular email and SMS updates about your website.

Protect Your Clients and Your Company with a Secure Legal Website

Your law firm works too hard to defend your clients in court just to fail them with weak data protection.

Maintaining a secure legal website allows you to focus on the cases in front of you instead of worrying about what may be trying to hack information from behind the screen.

For cyber support and reports, contact us today.

5 Ways to Ensure You Have a Secure Ecommerce Website

secure website

With an increased ease in online buying and selling, there’s a parallel increased ease for online thefts trying to steal credit card information.

As a company selling products/services on the web, it should be your top priority to keep your customer’s information safe.

You’re probably wondering, how can I know my site is secure?

Well, my friend, that’s what we’re here for. Read on to learn about 5 ways you can ensure you have a secure website:

1. Require your customers to set more complex and secure website passwords

This one is simple, yet extremely effective when it comes to keeping a secure website. Studies show that 73% of people use the same password for multiple sites, and 33% use the same password for every site.

Requiring more complicated passwords make it extremely difficult for thefts to hack your customer’s information.

The more characters, including numbers and symbols, can significantly increase the number of possible outcomes.

For instance, an 8 character password with numbers and symbols has 6,095,689,385,410,816 total possible combinations. That’s huge! This will most certainly help keep user’s information secure.

2. Avoid keeping customer’s credit card information on file

People love to buy online, anything from shoes, electronics, services, to Celtics tickets.

While it can offer a form of convenience for you or your regular customers to have their cards on file, it is more dangerous. Having this information stored leaves room for hackers to access and use it.

If you are going to store this information on your site, it’s important to look into things like layering your website’s security.

The 5 most common layers include (but aren’t limited to): antivirus, reputation, behavioral analysis, remediation, and the human layer.

However, as stated before, it’s best to avoid keeping this information at all if you are trying to maintain a secure website.

3. Make sure the plugins you’re using are safe

This step is especially important for those who use WordPress for their websites. A huge chunk of successful websites are created on WordPress, in fact, 74.6 million sites currently depend on WordPress.

When using WordPress plugins, or any sort of plugin for that matter, make sure to ask yourself things like:

  • How up-to-date or current is the plugin?
  • How many people have downloaded it?
  • What kind of reviews does the plugin have?

Doing this can save you from using something that can bring malware into your website and potentially put you and your customers at risk for fraud.

4. Use a reliable website monitoring service

Although there is a lot that you can do yourself to ensure a secure website, you can’t do everything on your own. That’s where Website Monitoring Services come in.

Not only does downtime of your eCommerce site affect your productivity, but it also makes your website an easier target for hackers.

Having a website monitoring service keeps constant watch over your site to ensure that it is safe from fraud.

5. Use a reliable eCommerce platform

A study from Google showed that there was a 32% increase in website’s being hacked from 2015 to 2016, with that number expected to increase.

That is why it is extremely important to use an eCommerce platform that is safe, reliable, and effective.

One of the safest and most popular of these is Shopify.

Shopify is certified level 1 PCI DSS compliant. That means that when using Shopify, your site (and theirs) is protected from inbound attacks.

Wrapping up

Making sure that you have a safe and secure website is one of the most important parts of an eCommerce business. If your customer’s information isn’t safe, you will face some consequences.

It’s not only bad for customer retention, but it’ll cost you in the case of a lawsuit if your site were to be compromised by cyber thefts.

That’s why using reliable plugins, platforms, and paying for a website monitoring service will save you big time in the long run. Don’t wait until it’s too late to secure your site, get the tools you need t

Why Your Website Is Compromising Law Firm Cybersecurity

law firm cybersecurity

25% of law firms have experienced a security breach.

Your client is protected by attorney-client privilege, meaning if there is a breach on your site, you’ll be held liable for any sensitive information that is compromised.

A complete disregard for law firm cybersecurity could cost you your career, practice, and reputation. It could also cost a client millions of dollars.

Keep reading for a few tips you should start practicing today to keep your professional website secure.

Law Firm Cybersecurity and You

There are third party encryption services all over the web. There are companies that can securely store sensitive information for a price.

None of it will do any good if you aren’t careful with your digital information. No third party can keep you from making poor decisions.

1. Plugins

If you have your own private practice or you’re a partner at a small firm, chances are that you have a WordPress site.

Maybe you paid an intern to make it for you, or one of your paralegals makes websites on the side. Chances are pretty good that you don’t know much about them other than how to log in.

That needs to change. The first step in law firm cybersecurity is proactivity.

WordPress has a few plugins that can help to boost your proactivity.

You can find plugins that will limit your login attempts to certain number. There are other plugins that will rename your actual login page’s URL from “/login” to something less obvious.

There are dozens of additional premium plugins providing enhanced security and firewall protection.

2. Multi-Step Verification

When available, always use multi-step verification. This includes social sites and message boards.

The easiest way to do this is to submit a phone number. The site in question will send a text message with a code. You will not be given access to the account until this code has been verified.

However, this is the least secure method. There are other ways to set-up authentication that are more of a hassle, but are harder to hack.

3. Common Sense

You are the biggest threat to your law firm cybersecurity. What’s your password?

Is it 1password? Password1234?

If so, you’re asking for it. Most of today’s hackers use a form of bot to guess your password.

It will continue to go through commonly used ones until it hits a winner.

Your password you be 12-18 characters long. It also should not be an actual word. It should be completely random and written down in a secure location should you forget it.

Keep your personal life and private life separate. Do not use any personal information on your professional websites. Don’t let your kids play games on work devices.

Don’t let employees come up with their own passwords or use their work devices for personal use. They should stay on premises. Could you imagine if there was a car accident and an employee lost a device with sensitive information on it?

You could be the one cleaning up that disaster in more ways than one.

Wrapping it Up

When it comes to law firm cybersecurity, you can be the difference between success and failure, so take it seriously.

If you can’t or don’t have the time and patience to learn, then look into a reputable third party to handle it for you.

If you enjoyed this article, you might also like this one on cyber security threats.

5 Cyber Security Threats Facing Pharmacy Websites

cyber security threats

In 2017 and beyond, cyber security has become a top priority for corporations across the globe.

Just this May, one of the largest cybersecurity attacks in history wreaked havoc across 150 countries. The attack’s reach was unprecedented, harming over 200,000 people across the globe.

No company or organization is entirely safe, as even the United States government, the Democratic Party, and Yahoo were hacked in 2016.

One sector that must be particularly mindful of security threats are online pharmacies. Read on to learn about the 5 biggest cyber security threats facing pharmacy websites.

1) Cyber Security Threats: Phishing

In addition to the payment methods used, pharmacies collect a great deal of personal information. This data is extremely valuable on the black market, making it a prime target for hackers.

Hackers will attempt to access this data by deploying spear phishing attacks. Phishing is a tactic that utilizes email to lure unsuspecting recipients to click on a compromised link.

For example, a hacker may embed malicious software in a link for a symbicort coupon. Once the link is clicked on, it is open season for the hackers.

2) Spear Phishing Paves the Way for Ransomware

Ransomware blocks access to key computer systems by employing malicious code.

The hackers essentially hold the systems and critical data hostage until a ransom is paid. In many cases, the stolen data is necessary for business operations and holds considerable leverage.

Obviously, this poses a significant risk to pharmacy websites that cannot possibly sustain losing the trust of its clientele.

3) Pharmacies can be Held Liable for Data Breaches

When a company collects personal data, they are legally responsible for safeguarding it. If a court rules that the pharmacy website was negligent in protecting that data, they could face substantial civil penalties.

Unfortunately, traditional business insurance does not typically cover electronic data breaches.

As a result, a pharmacy website will need to obtain cyber liability insurance to protect its financial interests in the event of a cyber-attack.

4) Convenience Leaves Companies Vulnerable

The popularity of online shopping and the constant effort to make it more convenient is not necessarily good for cyber security.

Things like one-click shopping sound great on the surface. However, additional layers of security will help safeguard client data.

This all ties back to the threat of being held liable for cyber vulnerabilities. If a pharmacy website does not take the necessary precautions to safeguard data, it may pay the price in court.

5) A Reactionary Approach Could be Costly

Many companies do not take the threat of cyber security seriously — until there is a data breach.

Employees must recognize the severity that cyber-attacks pose and be trained to identify incoming threats.

The harsh reality is that most data breaches could have been avoided.

Wrapping Up

Cyber security poses a serious risk to all businesses, and especially pharmacy websites. The amount of data that pharmacies collect makes them obvious targets to hackers.

Understanding cyber security threats and remaining vigilant is the best strategy for combating this risk. If there are any questions about cyber security threats, please do not hesitate to contact us for additional assistance.

3 Tips to a Secure Gmail Account

secure gmail

Cyber security is kind of a big deal.

It feels like every day brings more news about another hacking scandal or crippling malware attack.

2017 has seen a 250% rise in ransomware attacks. And that’s just one form of cyber attack.

While the statistics are a bit alarming, there are some surprisingly simple steps you can take to secure Gmail. Keep reading for 3 tips you can use right now to secure your Gmail account.

1. Create a strong password

It may sound simple, but your password is your first line of defense against a hack. If your password is compromised, you’ve got problems.

With the right tools, getting a hold of your simple passwords isn’t difficult for a motivated individual.

Most online accounts, including Gmail, are now requiring users to pick more complex passwords and add numbers or symbols. But throwing a few numbers onto your dog’s name doesn’t make much of a password.

The best approach to creating a secure password is to take several words and mix a few numbers and symbols in. The use of several words or phrase makes it much more difficult for a computer to hack your account.

Once you’ve picked a secure Gmail password, just make sure you don’t use it for all of your other online accounts. If you’re using the same password in multiple places, your other accounts are toast if a hacker gets access to one.

2. Set up 2-step verification

Once you’ve picked a strong password, the next best thing you can do to secure Gmail is to set up 2-step verification.

2-step verification all but ensures that only you can access your Google account.

With 2-step verification, you’ll have to enter a code–along with your password–each time you log in at a new location.

Your code will be sent via text to your phone after you’ve entered your password. Since no one else (hopefully) has access to your phone, add this layer of protection makes it pretty tough to hack your account.

To set up 2-step verification, just go into your Google account settings and look for the 2-step verification setting. From there Google will guide you through the process.

3. Check your account activity

Have you ever checked your account activity in Gmail?

If you haven’t, you’re missing out on a valuable tool to secure Gmail. It’s so easy to do you’ll kick yourself for never having tried it before.

When you’re in Gmail, just scroll down to the lower right corner of the window. You’ll find a line of text down there that reads, “Last account activity: XX minutes ago”.

Right under that, you should see a link that says “Details”. When you click “Details”, a new window will pop up with your account’s recent activity.

Keep an eye on this one and watch for suspicious activity.

For even more help to secure Gmail, check out the www.gmail login post at Emailhelpr.com.

Ready to secure Gmail?

If you’ve taken all the steps outlined above, you’ve taken a big step to better secure Gmail.

The question is … have you done enough?

Once you’ve done the above, the best approach from here on out is to use common sense.

Hackers are looking for the easy way in. So if you’re being smart when dealing with strange messages and requests, your account will be much safer.

Domain Security: How to Protect Against Name Hijackers

domain security

Domain security is not just a check mark on your wish list, it’s a must-have for any website owner.

It’s easy to get immersed in the details of building your brand. Launching your website and managing your fledgling business is way more fun that worrying about security.

While all of that is fun, the importance of domain security can’t be stressed enough.

Hacking incidents had a slight decline in the last decade but have come roaring back as hackers get more and more sophisticated in their methods.

Believe it or not, hacked domains account for .8 of the world’s GDP – a staggering average of $400 billion in revenue loss!

Don’t know what it is? Know what it is but think you’re safe enough?

Follow along while we break down the what, why, and how of locking down your site.

What Is Domain Security?

First, let’s analyze where you’re weakest. Hackers look for spots where you’re most vulnerable and move in for the kill.

You might be stunned by how easy it is to register a domain, but that’s the flaw.

If you’re just logging in with an email and a password (that you swear is secure), there’s the problem.

A true domain security protocol is one that gives you control over things like password strength, access, and total lockout.

So now you know what it is and why you need it, let’s go over how to lock it down and keep your domain safe.

Create A Strong Password

This is really domain security 101. If you think your beloved pet’s name with a few numbers thrown in is all it takes to keep the bad guys out, think again.

Go with a password generator for the strongest security. It might be a confusing jumble of letters and numbers, but that’s exactly what you want.

Be Smart About Managing Your Passwords

Now that you’ve got one strong password, make one for every single account you have.

That way even if one gets cracked, you’ll still have control of the others.

Make keeping track your passwords easier on yourself by using a password manager.

Bonus tip: change your passwords every three months to really up your domain security.

Double Up

Make life difficult for hackers by adding a bonus level of security: turn on two-factor authentication.

That means that even with a password, a special code is sent to your phone. Hackers would need access to both to break in.

Tons of services have this capability because they realize how crucial it is to keep your site safe.

Register To Your Own Account

Use your own identity when registering your domain. That way you always retain control and your ID can be verified.

While it seems daunting, you don’t have to give up control of your main account.

There are ways to share access to the site without using your main login.

Lock Up Your Email

So you’ve turned on two-factor authentication on your website and registered everything in your own account.

It might seem like a water-tight plan but go the extra mile and make sure your email is protected, too.

If someone gets ahold of your email, they might be able to reset your password through there.

In addition to the previous steps, safeguarding your email is a big step towards domain security best practices.

Get A Good Anti-Virus

Believe it or not, you don’t have to shell out big bucks for an anti-virus that does the trick.

There are plenty out there that come directly from Microsoft or other reputable places that offer no to low-cost anti-viral programs.

To make sure it’s effective, always keep it up to date. Any time there’s an update, make sure to get it done immediately.

Try to run your anti-virus scan once a week at least.

Be Careful What You Click On

In the middle of the hustle and bustle of building your business from the ground up, you might just click any old thing that comes along.

Stop before you click.

Don’t go for any links or downloads that look tempting before running it through your antivirus software.

Check out a website that a link is trying to re-direct you to verify it’s safe to go.

And be especially wary of any site that asks you to register with an email and a password.

Bonus: stay safe while using public wifi. Hackers can use it to re-direct sensitive information if your access it from a phone or tablet.

Phishing is No Fun

Heard of Phishing? Sounds like when you join the legendary 90s jam band on their cross-country tour but it’s nowhere near as cool.

Phishing is when hackers try to get you to let your guard down through malicious emails. Those hackers are getting sneakier by the day, too.

Here are some things to watch out for if you suspect you’re being phished:

  • Using a legitimate business’ name – but a fake website
  • Very personal emails with your name – but asking you to click on a link or download something. This type is common on social media.
  • Media access sites – but something’s off. Very commonly, phishing attacks will come from something you use to access your files, like a fake Dropbox account.

Be wary of what’s in your inbox to maintain domain security.

Make A Real Plan

If you’re part of a larger company, make domain security a party of your overall strategy.

Your domain is just as valuable an asset – and full of rich information that you don’t want getting into the wrong hands.

Make sure your company understands how crucial it is that your website’s integrity is never compromised. Work with them to put protocols in place in case something happens.

Get Real-Time Updates

While you can put all of these things into place, sometimes hackers still slip through.

Sleep easy by hiring a site monitoring service, like Site Uptime. If there’s a drop in activity or anything else suspicious, they’ll instantly alert you.

Plus, there are several tiers of plans, one of which is completely free.

Which tips have you tried? Which do you need to follow up on? Don’t compromise your website – take domain security seriously and don’t skip any steps.

Agile Security: 5 Best Practices for Scrum Teams

agile security

We live in a new world with new possibilities. Data that was once easy to keep under lock and key has now become more difficult to manage. This difficulty has made cybersecurity a major concern for most companies.

To combat threats, businesses are looking into new solutions, one of which happens to be agile security. Companies need to be able to respond to data breaches, and faster response times are just the thing they need.

Businesses will no doubt be hard-pressed to keep up with all of the twists and turns which accompany developing agile security systems. That said, we’re doing you a service by giving you five tips that will keep your scrum teams on their toes.

Automate Security Protocols

Automation is the way of the future regardless of whether or not we’re talking about cybersecurity or less consequential things such as social media posts. It just has too many great uses in the digital age we live in.

As it turns out, automation can do wonders for teams looking to tighten up their security.

Programmers and engineers are talented, but human error is always a possibility. Consequently, coders need to refocus their efforts and start finding ways to automate the tasks which can be botched as a result of a single mistake.

Automation also allows for what we like to think of as a more all-encompassing method of keeping systems secure. Automated tools can monitor everything all at once, unlike humans.

They’re also a more agile solution for businesses nowadays. When an issue arises, it takes longer than some of us would like for tech teams to start attacking the issue.

Automated tools and programs, however, are always on the scene. When something goes wrong, they’re the first responders by virtue of being present. They may not prevent disasters as effectively as human detectors can, but they let engineers know something is off before companies have catastrophes on their hands.

Rapid Response Teams

As great as automated security protocols are, there is no reason to think that they could ever replace talented programmers. Computer programs run on coded instructions whereas programmers run on all of that and more.

Having said as much, scrum teams should at least consider having a rapid response team on standby. Though this team probably wouldn’t beat the automated tools to the punchline, it would certainly be neat to have one.

Having a whole team of qualified professionals is, after all, never a bad idea.

Just make sure that this team is a rapid response team in every sense of the phrase. The team should be on-call at all hours of the day if possible since things can go haywire at any moment.

And as an added bonus, rapid response teams have the potential to build customer value.

Cloud-Based Security

The cloud gets mixed reviews in some circles. Some believe that it isn’t secure while others are perfectly sure that it’s just as secure as other means of storage.

Regardless of what you think, though, it’s here to stay. As a result, we might as well make us of it in order to put some agile security protocols into place.

Cloud-based security, unlike traditional security, essentially lives in the cloud. It calls no hardware its home, which allows it to better protect portable data that travels from network to network.

This approach to security also has the potential to save companies money in the long run. Software which is stored on hardware expires when that hardware reaches the end of its life. Cloud-based software, on the other hand, is subject to no such expiration.

API-Driven Security

You’ve probably heard us mention API security at least once or twice around these parts. We don’t like to toot our own horns, but we’re right to be crazy about it.

API-driven security is a triple threat of sorts. First and foremost, it allows teams to make updates to preexisting systems and perform necessary integrations without upsetting entire systems. It makes updating systems quick and simple, and that’s the definition of agile security.

A second benefit of API-driven security, it makes automation that much easier for companies since the two play nicely together. If that wasn’t enough, the third benefit of this type of security is that it also plays well with the cloud. Mixing the two pretty much guarantees speed and ease for security teams.


Many of you have probably heard of DevSecOps. If you haven’t, though, this is for you.

DevSecOps is admittedly more of a mindset than a practice, but it technically qualifies as both. It promotes the idea that security should be “added to all business processes.”

This approach might seem intense to some businesses, but you can’t deny that it embodies the idea of agile security. If all business processes incorporate elements of security, the likelihood of something going wrong decreases greatly.

Needless to say, however, the DevSecOps approach is easier said than done for some companies. It stresses the idea that “everyone is responsible for security,” but, realistically speaking, some people are better-equipped to handle security issues.

Still, adopting this model is a great idea. Big data is our future, and we need to prioritize its protection. We can only do so by giving our current methods and systems a complete overhaul.

Just remember that Rome wasn’t built in a day. Start small and then make larger changes.

Agile Security At Its Finest

Your scrum team is well on its way to developing a killer agile security system. In fact, we’re willing to bet that it will be so good that it will anticipate problems before they even become…problems.

In any case, make sure that you and your team stay safe this 2017. Hackers don’t ever take breaks, so you can’t afford to either. Your days must be spent thwarting one hacker after the next.

If you find that you need a little help along the way, just reach out to us. We want you to succeed, so we’ll always make ourselves available to you. You can count on that.

Legal Boundaries Ecommerce Sites Selling Cannabis Products Need to Know

cannabis products

These days, eCommerce has become far more popular than shopping in brick and mortar stores. With an estimated $1.915 trillion spent online last year it’s important to have an online store. If that’s not enough to convince you, projections are estimated to at least double within the next 3 years.

And with medical marijuana now legal in a few states, cannabis products are quite popular. But selling cannabis products can be a tricky situation. If you’re not careful, you may find yourself in some murky legal territory.

Accordingly, you’ll need to know what you can and can’t do online. Here are some things that every eCommerce owner needs to know.

Legal Boundaries Cannabis eCommerce Sites Need to Know

eCommerce Law is Largely Similar to Commerce Law

The first thing you’ll need to know before setting up shop is that eCommerce isn’t as different as you may think. While the internet opens up all sorts of potential avenues, the law isn’t quite as fast as many would like.

In fact, quite the opposite.

Accordingly, many of the eCommerce laws are in accordance with traditional commerce laws. That means that you can’t sell anything online that you wouldn’t be able to sell in a traditional store.

For instance, in the United States, you can’t purchase alcoholic beverages until the age of 21. Thus, you’d need to be 21 to buy alcohol online, too.

What You Can Sell

You’re likely here to discover what you can sell online in a legal fashion. Since eCommerce laws have to follow commerce laws, you’re not allowed to sell cannabis.

Instead, you’re allowed to sell anything you’d see at a gas station, smoke shop, or similar store. This includes pipes, grinders, CBD dabs and more.

But online sales go far beyond your standard receptacles. You can even sell grow lights, hydroponics, and other equipment used to grow cannabis.

Restrictions essentially stop just short of selling the cannabis and seeds itself. You can even purchase plenty of CBD oils online and ship them nationwide.

What You Can’t Sell

As mentioned, you can’t simply exchange cannabis for money online. But there have been cases of individuals ordering cannabis seeds from other countries and shipping seeds to the U.S.

If you’re looking to sell your products nationwide, you’ll need national licensing. Once you have your license, you’ll need to do a bit of research and due diligence.

To sell cannabis in most states, purchasers must prove they have a license to obtain cannabis in a legal way. Don’t just accept any doctor’s note, either. Failure to follow federal regulations could result in fines and possible jail time.

This is in addition to a valid state identification card. While the burden of proof is on your customers, it’s up to you to keep them honest.

Be sure to check your state laws to make sure you’re in compliance.


Remember, selling cannabis products online other than simple edibles and accessories is tricky. Always make sure you’re complying with federal law, and get as much proof from your customers as you can.

There’s a ton of money to be made from online eCommerce stores, so make sure your site is ready!

Is Public Wi-Fi Really That Dangerous?

OB One Communications Target URL: http://www.ob-one.com

With the Internet becoming more and more of a basic human right, many shops, restaurants, and even public transportation systems like New York’s MTA are providing free Wi-Fi to the public.

Initially, this might seem like a great advantage in this fast-paced society. But do public Wi-Fi networks put wireless security at a greater risk?

Let’s take a look.

What Risks Are Involved With Using Public Wi-Fi?

As with everything that’s free, there is a price to pay for public Wi-Fi. Just because while there’s not a physical theft of a cell phone or laptop doesn’t mean thieves can’t still steal personal and confidential information.

Here are a few problems with using a public Wi-Fi.


Private Wi-Fi systems are encrypted. This means that a private password needs to be used to access any information.

No one except the user can view what information has been accessed.

Not so when using a public Wi-Fi system. There, anyone can see what unencrypted pages are being viewed. Additionally, no password is needed to access unencrypted pages. This means that anyone can see what information is typed in unencrypted forms.

Finally, anyone can see which encrypted sites have been visited

And there’s literally no way to know when or if someone is looking into that type of personal information.

It’s not like they have to look over a shoulder to do the spying. All they need is an unencrypted Wi-Fi and an unsuspecting victim.

Device is Compromised

When a person walks into a room and sneezes without covering their mouth, germs are spread. Something similar can happen when a compromised device is nearby. These devices can easily spread their infection to other laptops.

To avoid any problems, always select “Public Network” rather than “Home” to ensure no files or sensitive data is being shared.

Malicious Hotspots Galore

Just like spam e-mails that claim to be from the bank, a malicious hotspot can claim to be a legitimate Wi-Fi spot. It’s not always easy to spot the legitimate Wi-Fi spots from the malicious ones, either.

How to Keep Information Safe and Secure

Luckily, there are plenty of steps to take to ensure any device is always kept safe and secure.

One step is to rely on security experts, like those at OB One Communications, who will install a safe and secure wireless system so you never have to worry about your data being stolen.

There are a few other steps you can take to protect laptops, cell phones, and iPads.

Only browse encrypted sites using the HTTPS Everywhere browser extension – this can be enabled to ensure all sites accessed will automatically have this extension. Then, make sure all security patches and firewalls are up-to-date. Always use a VPN (virtual private connection.)

Next, turn off sharing in public spaces. To do this, go to System Preferences or Control Panel. Always remember to turn off Wi-Fi when not needed – this will also prolong the device’s battery life.

Keep in mind that you can always buy an unlimited Wi-Fi plan and never rely on public Wi-Fi again.

Lastly, implementing a two-factor authentication for sensitive sites will prevent malicious hackers from logging onto the site, even if they’ve somehow gained access to the passwords for those sites.