At Cyan Marketing, we build lots of websites using WordPress, a hugely popular web platform that is currently running about 25% of the Internet. But WordPress and other CMS systems like it will only continue to work properly (and securely) if you keep them up-to-date.
Every month we speak to companies who have had websites designed by freelancers, students or friends before finding themselves high and dry with no on-going support. These clients get in touch when their sites are inevitably hijacked, infected with malware or simply start to present a few display errors in new browsers or on certain mobile devices.
WordPress support from £25 per month
According to Sucuri, 9 million websites are currently hacked or infected. Google’s Safe Browsing shows over 5 million warnings per day for malicious sites and ones with unwanted software. Don’t let your brand reputation be damaged by your website being hacked. Having an impressive website design is essential for the modern business, but it takes regular TLC too. Fortunately Cyan Marketing
Below are two of the most popular WordPress support packages offered by Cyan Marketing. For more information please call 01268 778555.
£ 25Per Month
- WordPress and theme updates
- Plugins updated for additional functionality and security
- Uptime monitoring
- Manual backups
£ 67Per Month
- All of the Basic plan features
- Malware/blacklist monitoring & fixes
- Web traffic reports to track performance
- 1-hour of development support
Good practice when supporting a WordPress website
So who would want to compromise your website anyway? Well, a common misconception of hackers is that they tend to be geeky, teenaged males, sitting alone in their room. In reality, it is often organised criminals targeting your site, automating bots to perform the attack or hacking.
Most of the time, their motive is to use your website to send out spam emails or host files, which are criminal in nature. Since their scripts are automated, they can seek out websites containing known security issues, which means minimal effort for the maximum reward. So here are some suggestion for best practice when warding off the advances of the bots and the bad guys.
Run updates on any software, apps or plugins
Keeping your website with up to date software is an important step in reducing the risk of security breaches.
Choose your web hosting sensibly
Look for the security features, technical support and a reliable service.
Keep a daily back-up
It is ideal to have at least 60 days’ worth of backups thus if an issue is found you can use a backup prior to the hack and find a clean version of your website. Never assume your backups are working correctly, every so often check that all is well.
Protect against brute force attacks on login forms
Ensure any error messages on login forms are vague rather than specifying which entry was wrong. As this gives away when one part is right so they just need to figure out the other.
Force strong password use for website users and particularly admins
This will help to secure your site and reduce the chances of password being able to be guessed. It is also important to have different levels of access as not everyone will need to be an admin to make minor website changes. You could also consider using two-factor authentication processes if you need the extra security.
Consider encryption using SSL to protect data transferred between your website and the server. Although for small websites using a payment gateway is perfectly acceptable and negates the use of SSL, Cyan would recommend that for larger e-commerce stores payment should be integrated and therefore SSL will be needed.
Purposely have your site hacked, yes really…
Test the strength of your security measures by having a legitimate company test how easy it is to hack your site and then use their report to improve security as needed.