Security Tips for Your Websites

People take online security very lightly. I admit it. I do as well. What can I say? I’m a trusting person, but there are nerds with no lives out there who have nothing better than to play with your life, or lazy bums trying to steal your identity, so protect yourself!

I recently had a hacking attempt on my website, and a customer’s. There’s no one at fault, but there are some vulnerabilities with free, open source code that forms WordPress, so

SECURITY IS IMPORTANT!

Here are basic and easy tips to maintain the integrity of your website, and all your online happenings in general:

  1. Passwords Change your passwords, monthly. Make them complicated! (and don’t store them on your computer!) Set a strong password for all your logins: FTP, Admin backend, Database, Host (Plesk, cPanel, etc). It is recommended to have a 7-15 character password, using a number, character and upper case letter. Make sure that you are changing the password at least every 30-90 days as a preventative measure. Never log in to an account from a link sent via email. This can be a form of a phishing attack.
  2. User Access It is best to limit the amount of users that have access to your hosting account, passwords and FTP. The more users you create, or share logins, the more at vulnerable you are to security risks and exploits. Don’t share your logins with anyone other than your website administrator! If you are unsure, ask!
  3. Updates It is critical to make sure that your website is always up to date with the latest software release. It is best to ensure that all plugins, modules, themes, and versions are always up to date. These updates will help prevent known vulnerabilities to the application of the site.

Questions?

Contact me!