Last week we discussed an example how security companies’ blog posts can show that they lack the expertise they claim to have:
One way to determine if a security company actual has the abilities they claim is to look at their blog posts, since we often find those expose a lack of knowledge that can be covered for in vague marketing material.
The example we used was the security company WeWatchYourWebsite confusing a hacker trying to exploit a vulnerability that didn’t exist on a website with hackers looking for already infected websites.
We got a comment from the company, which can only be described as childish, and strangely seemed to be trying to dispute what we wrote by reiterating what we said (maybe they didn’t bother to read the post?). One element of it sticks out though:
Of course I’m certain your ego won’t allow this comment to ever show on your site.
(We did say it was childish.)
We did approve the comment, as we do with any comment that is at least vaguely related to the post being commented on. By comparison WeWatchYourWebsite doesn’t allow comments on their posts:
Does that mean that company has a big ego? We don’t know, but we do know that it means that people have no possibility of alerting others that what they are writing isn’t correct at the source. They are not alone in this as we have seen a number of security company that say things that are wildly inaccurate or outright false in blog posts and do not even allowing the possibility of a comment that corrects them (in other cases they don’t approve comments that don’t praise them).
If you see a company not allowing comments, it should give you second thoughts about doing business with them.
Also, you have to wonder about the kind of person that would write something that they think is so bad that they preemptively claim it won’t be approved or claim that they will be deleted.