Dec 20, 2012
Many website owners assume that their site isn’t worth breaking into or hacking but the problem with that way of thinking is that they don’t put the proper security measures into place and they eventually have a major security issue come up.
All security issues on your site don’t necessarily involve someone stealing your customer info or messing with your visible site, instead it could be using the server your site is on for spam or to put illegal files on under your name. The whole process of hacking sites today has become automated where they can find sites that are not secure and use them immediately.
So what can you do to combat hackers and keep your site secure? Here are a few ideas:
Make sure your security software is current and working correctly.
When you set up your initial security on your site most people select to have automatic updates and then let it sit. This might be fine for a little while but it is possible that some updates won’t be compatible with your operating system or some other issue arises that keeps the software from updating. Make sure you check your security software regularly to ensure it is working correctly and is up to date. If you use Webguard website security software this is an easy process and will only take a few minutes every couple weeks. If you run into any issues our customer service team can help you.
Keep Your Error Messages Simple
Make sure to watch how much info you give with your error messages. Many sites have log ins and it is important to not give away too much info if a log in attempt fails. Instead of saying either a username or password was incorrect you should use generic messages like “The Username and/or Password was incorrect”. Otherwise the unauthorized user will know which part of the log in they had right/wrong.
Enforce Password Requirements
We discussed passwords in detail last week but it is still important to remember how to create a secure password and how, as a website owner, you can ensure your users have a good password. Make sure to enforce password requirements on your site. Make the password a minimum of 8 characters, include upper and lower case letters, and make sure to have them include one number or other usable symbol
Consumers trust sites that are secure and have an SSL certificate on them. Without this the consumers information is in jeopardy and so is your website since if one piece of info is stolen it can be traced back to where it happened and you might be blamed or held responsible. Make sure your site is secure with Webguard and make sure your customers feel comfortable making purchases or giving you their information for billing. If you aren’t willing to do that then you should be using a third party payment system like PayPal, which might not look as professional.
For more information on keeping your website secure with Webguard and how we can help you keep your site safe and improve your business contact us today.