At yourbuildingmanager.online, we provide reliable tools for buildings and co-ownerships. That also means taking security seriously from day one — and that precaution has already proven its value.
3 minutes reading time.
Everything connected to the internet will eventually be tested by hackers. Now that we’re growing more visible publicly, we’ve encountered our first attempt to break into our systems. Our logs showed that someone tried to insert code into our database — a method used to check whether they could run code from inside our website.
This is, unfortunately, part of today’s online world.
The good news: our defenses worked exactly as intended. The attempt failed, no data was at risk, and the attacker quickly discovered that our systems are not worth their time. We reviewed the incident thoroughly and confirmed that no breach occurred. We also implemented several improvements:
- Failed attempts will no longer flood our logs.
- End users now receive an error ticket, allowing us to pinpoint and fix problems faster.
If you want to know more about how we protect your data, you can read our security page: https://yourbuildingmanager.online/www/our_security.
Security is a continuous process. We constantly review, improve, and test our platform to stay ahead of evolving threats. We were already working on a strict Content-Security-Policy (CSP) — a powerful measure that prevents malicious scripts from running even if someone has local access to your own device — and we will accelerate this rollout. This may cause temporary issues with partners such as Mollie or finAPI; if you see anything unusual, let us know.
But security is also a shared effort. That’s why we include a short safety guide at the bottom of every email we send. We warmly encourage you to take a moment to read it, so you feel confident and well-prepared in the online world: https://yourbuildingmanager.online/www/online_safety.
