In the meantime, a lot of services have been attacked by hackers: Microsoft, Apple, Twitter, EADS and recently, Evernote.
The last example shows that hackers are not only interested in enterprise credentials but also in private data stored in the cloud.
I know that Todoist is very secure and reliable and you have a very good transparency.
As I know, all passwords are hashed and salted. Is this right? Do you monitor the service so that you are able to detect attacks?
Thanks and best regards!
Asked by Andreas N. on Mar 03, 2013 - 10:12
We have constant monitoring over all activity on the servers we're on, not only checks for suspicious activity, but also regular activity in case some unusually large amounts of requests would be processed.
Our host (Amazon Web Services) also has the industry's highest security standards and would ban certain IPs or requests automatically in case it would detect anything suspicious.
Of course all passwords are hashed and salted and there is no financial data stored on our end as all our payments are processed by PayPal, Google PlayStore and the Apple Store.