Servage Magazine

Information about YOUR hosting company – where we give you a clear picture of what we think and do!

Few steps to check and improve the security of your website

Wednesday, November 4th, 2020 by Helge

person-woman-desk-laptop-largeBeing hacked on your website is a real pain! Fortunately, you can increase the website’s security with relatively simple means to avoid this. The 8 tips below do not guarantee complete protection against intrusion but at least make it more difficult for hackers to get in.

  • Update website tools, extensions and themes

If you create your website yourself in eg WordPress, it is important to keep your WordPress version, themes and extensions updated. An updated version not only gives you new features and an improved interface – it also counteracts intrusion.

Up-to-date themes, extensions and versions of WordPress may contain security holes that make it easy for hackers to access your site and fill it with spam links or steal your personal information.

  • Remove unnecessary additions and themes

Disable and remove any extensions and themes that you do not use, especially if it has not been updated by the creator in several months. Even if you do not use them, they can contain security holes that open up shortcuts for hackers.

Keep in mind that disabling the add-ons is not enough, you need to delete them completely so that they no longer pose a threat.

  • Take regular backups of your website

If, after all, your website is compromised and injected with malicious code, it can be nice to have a fresh backup of the website ready that can replace the damaged version.

At Servage, we back up your site continuously. For guaranteed security, however, you also need to take your own backup that you save locally (preferably on an external hard drive) so that no hacker can access it.

  • Double-check all files that are to be uploaded to the website

Make it a habit to always double check Excel and Word documents, images and PDF files before uploading them to your website. For example, use the F-Secure SAFE virus protection tool to scan for separate files for malicious code.

  • Protect yourself from Brute force attacks

A common approach to hacking a website is so-called Brute force attacks. These attacks mean that someone guesses your password by testing millions of different variants and combinations. Protects you against this method by:

Use secure passwords that are super hard to figure out. Read our tips before choosing your password here »

Secure your login box using various security add-ons. Keep in mind that these posts also need to be kept up to date!

  •  Choose a username other than “admin”

In many brute force attacks, hackers try to access through the admin account. Therefore, it is important that you do not use the username “admin” when logging in to your website.

To be on the safe side, you can even delete the admin account (or give it lower permissions) after creating a new user account for yourself. All to avoid unnecessary security risks.

  • Generate complex passwords

By using a really complex password, you can significantly reduce the risk of intrusion. A tip is to use a password manager (eg 1Password or LastPass) and let the tool auto-generate your password. It creates really complex passwords that are next to impossible to figure out.

If you would rather choose a password yourself, there are three things that are important to avoid:

Personal information in the password (nickname, social security number, etc).

Same username as password.

Common words, words that can be found in dictionaries and several similar characters in a row or characters in a logical sequence (abcde, 1111, 12345, etc).

  • Regularly search the page for malware

Sometimes it can take a long time before an intrusion is detected. By regularly scanning your website for malicious code, you can easily avoid that scenario.

For those of you who have a WordPress page, we want to recommend the Wordfence extension. It includes a scanner you can use to scan your site for malware, dangerous links, suspicious files and user accounts, and more. Read more about how to protect your WordPress page with Wordfence »

  • Increase the security of your website’s visitors with SSL / https

SSL encrypts the traffic between the site and your visitors and ensures that unauthorized persons cannot read sensitive information such as login or account information. It also gives you an https URL that shows that it is safe for your visitors to shop from your website. Via Servage, we offer dedicated SSL and free Let’s Encrypt!

Few steps to check and improve the security of your website , 4.8 out of 5 based on 9 ratings
Categories: Guides & Tutorials
You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

No comments yet (leave a comment)

You are welcome to initiate a conversation about this blog entry.

Leave a comment

You must be logged in to post a comment.