Increasingly websites belonging to all types of business are targetted by hackers. Don’t make the mistake of thinking that only big corporate websites attract visitors with malicious intent.
Whilst attacks on big companies (such as the DoS attack on the BBC and the Irish National Lottery in September this year) make the news, anyone who owns a website with a content management system (CMS) that allows online login, could be a target for hackers.
If you are a website owner, here are 7 things you can easily do to protect your site:
- Update the script that runs your website.
If you have a WordPress, Drupla or Joomla site or an Ecommerce site always be aware when an update for the script is released and apply it IMMEDIATELY.
When a vulnerability is discovered, updates will be released to patch the security flaw, but if you don’t update, your site won’t be protected.
- Use strong passwords to enhance website security.
You should pick a login password that has at least 12 characters and contains upper and lower case letters, numbers and symbols. Cracking a password is much harder if the combination of letters does NOT make words.
- Secure your computer with anti-virus software.
It is vital that you protect your computer against viruses. Failure to do so could give hackers a way into your website when you log in from an infected machine.
- Change your database table prefix.
When using a common CMS such as WordPress or Joomla, you should change the prefix of its database so it is not immediately obvious which system is in use. This is something that should be done as the site is first created.
- Delete your installation folder.
After installing a system such as WordPress or Joomla, delete the installation folder. Again, this should be done as the website is created.
- Install a firewall for extra security.
Our favourite firewall for WordPress is “Wordfence” and for Joomla is “RSFirewall“, but there are many other options available.
- Only install plugins, extensions aor templates from reputable sources.
If a plugin is found through the WordPress internal plugin search or an extension through the Joomla! extension directory, then they are generally safe to install.
Never be tempted by free plugins, extensions or templates which you discover through a general search on Google.