Website Security

Protecting you and your clients

Hacking is more popular than ever these days, it seems like everyone’s getting involved from nation states to bored kids. And the penalties for suffering a data breach are getting harsher with new laws like GDPR protecting consumers.

Now, more than ever, it’s crucial to make sure your website and your data are secure.

WordPress is continually at the top of hackers lists ^[1]. As the most popular website systems a single vulnerability in WordPress can be exploited across millions of sites. All websites are vulnerable too, other popular targets include Joomla, Drupal and other well-used content management systems.

How to prevent most hacks in one simple step?

Update your website. That's it.

90% of hacks on websites are attacking vulnerabilities that have already been fixed. ^[2]

Fixing a hacked website

Even carefully protected and updated sites can fall foul of hackers. Getting your website back online is always a top priority. You’re not just losing potential customers who can’t use the site, if your site stays hacked for long it will start to get blacklisted by search engines .

We can help you fix a hacked website, our process is:

Quarantine

Secure the site by blocking of access to the rest of the web.

Analysis

Download and analyse the website to see what has been hacked and look for other vulnerabilities.

Review

If you have recent backups then we can restore these, if not we’ll need to sanitise the current code.

Fix

Fix the security holes and create new backups.

Live

Make the site live again.

Prevention is better than cure

If you’ve got a website built on a popular content management system like WordPress or Joomla then you need to keep it up to date. Severe WordPress hacks are usually being exploited within hours of discovery for example, if your website is out of date then it’s only a matter of time until hackers find it.

We offer website support for most of the popular content management systems out there. We can keep your website regularly updated and will quickly patch any severe bugs that are discovered. Updates can sometimes cause issues with old sites, we’ll watch out for this and test major updates separately to avoid downtime.

This gives you the peace of mind that you are much safer from hackers. We’ll also take regular backups so should the worst happen recovery will be quick.

You can read more about how we can support your existing website on our website support page.

What’s better than having your hacked website back online quickly?

Not having your website hacked in the first place!

Website security audits

If you store personal information on your website then you need to make sure that it’s stored securely, and your website is up to current security standards. Most business owners are technically minded, they assume that their web designer has coded their website securely. Sadly that is often not the case.

We’ve taken on some real horror show websites. Websites that were exposing personal data to Google searches and even had passport scans publically accessible. These were websites supposedly built by ‘professionals’.

To comply with GDPR it’s important to ensure that any sensitive data is safe from external access, that only relevant team members can access it, and ideally is encrypted.

We offer security audits on websites, to discover where the vulnerabilities are for attackers and also to check that your sensitive data is not exposed.

Our website security audits will give you specific actions to take to secure your website and protect your data. We can also implement any required changes to your website if you want.

WordPress comprises 90% of website hackshttps://www.infosecurity-magazine.com/news/wordpress-comprises-90-of-hacked-1-1
30,000 websites are hacked a dayhttps://www.forbes.com/sites/jameslyne/2013/09/06/30000-web-sites-hacked-a-day-how-do-you-host-yours/?sh=6c6647cf1738