Your data is a priority so we protect it by all possible means. That’s why we have examined all the various ways how to protect data which enter or exit Exponea. One of which is the switching of HTTP and FTP connectivity to their more secure counterparts.
HTTP and FTP are cleartext protocols that do not use encryption in transit. Data in transit is being accessed over the network, which could therefore be intercepted by someone else, either on the network or with access to the physical media the network uses. An attacker could intercept your traffic and read your data, copy your credentials, or even modify and duplicate files. To protect the confidentiality and integrity of your data and the personal data of your clients, make sure to encrypt your data in transit, using SSL/TLS or an encrypted equivalent (switch HTTP to HTTPS and FTP to SFTP).
How can I be affected?
-Your imports and/or webhooks (which use non-secure transit protocols) will stop working completely.
-Your campaigns which are dependent on that data can also stop working or perform in unexpected ways
What do I have to do to prevent this?
-Please make sure that any usage of the below is replaced with the respective secure alternatives by May 31st, 2019.
-Import CSV from HTTP or FTP to be replaced by HTTPS or SFTP.
-Webhooks to HTTP endpoint to be replaced by HTTPS endpoint.
What is the timeline?
Initial deprecation notice
-You are expected to switch HTTP transit to HTTPS.
Final deprecation notice
-Will be sent once the full support for SFTP is implemented (at least 30 days ahead of the final shutdown of HTTP and FTP)
-You are expected to switch FTP transit to SFTP
HTTP and FTP is removed (earliest on May 31st, 2019)
If you have questions about the changes, please contact our support on Live chat or your Customer Success Manager.