A report released by Whitehat Security shows that 86% of all websites have at least one serious vulnerability. The lack of website security is a serious problem, and even larger organizations are not immune. As websites become more complex and more people use the Internet, it is important to understand how to protect yourself from online attacks.
1. Backup Your Files
Every website administrator should have a backup copy of his website files. If something happens that prevents you from accessing your website, you do not need to rebuild everything from scratch. Worse, you do not want to lose all valuable data. Use a service like Carbonite or Mozy to back up your website files and database files. Set your settings so that they are automatically backed up every night.
2. Encrypt Login Pages
If hackers want to use your password, they may cause a lot of damage. Use SSL encryption on the login page (encryption that makes https:// appear at the beginning of the URL). Otherwise, hackers can easily access the login credentials. SSL encrypts the information entered on the page so that it is meaningless to any third parties who might intercept the information. If you send sensitive information via email, you should also send the email via SSL encryption.
3. Limit the Sharing of Login Credentials
Even if you share login credentials with colleagues and colleagues more often, the more likely they are to fall into the wrong hands. If possible, please avoid sharing this information. Instead, a separate account is assigned to each person who must visit the website on a regular basis. If you downgrade or cancel anyone’s permissions, for example, after they leave the company, please deactivate the account, or change their password immediately.
4. Use a Strong Password
Hackers always come up with more and more sophisticated methods to hack password-protected accounts. Use a strong password to protect yourself. You might think that the more complex the password, the better, but the length is higher than the complexity. You should also use words that are not clearly associated or associated with your website. For best results, use a combination of random words, numbers, and symbols in the password.
5. Connect with a secure network
Avoid connecting to the Internet through a network with unsafe or unknown security settings. This means that updating your website from the library or the nearest Starbucks is not a good idea. If you absolutely must access your website from an insecure network, use a secure website proxy. Then, at least your connection will come from a proxy on a secure network.
6. Stay Updated
There are reasons why those pop-up windows announce available updates. When companies release software, they usually do not understand everything that can go wrong. Therefore, if they find a bug or malfunction in the software, they will issue a patch or update to fix the problem. Do not postpone downloading updates for your web server, antivirus software, firewall, WordPress and other software. Experienced hackers can easily exploit known software vulnerabilities.
Read more at Casbay Blog.