Tag Archives: Cyber Safety

Security of Your Old WordPress Website

1 Reply

Whether you are using a WordPress content management system or another system, the security of your site is of paramount importance. Security of your old WordPress Website is one area that many website owners forget about. There are many hackers and trouble makers that attempt to hack sites every hour and minute of every day. Some do it for the challenge while others are hack sites for malicious reasons.

Many owners of websites figure that they have nothing of value so why would a hacker be interested in them. They aren’t interested in your site. They are interested in gaining access to the server your site sits on and from there doing damage to other sites and systems. Your website will go down in the process as well, or deliver content that you may not want your clients, friends, and family to ever see.

Improving the Security of Your Old WordPress Website

If you have a site that is running an old version of WordPress, update it immediately. This is the first step since older versions leave known vulnerabilities available for hackers to exploit. Before upgrading always make sure you have a backup of your content in case anything goes wrong.

Once you have upgraded, test your site to make sure that it is operating the way it usually does. Make any changes that are needed.

If you do not already have an application that checks for hackers and uploads that contain viruses, consider using WordFence. They have an excellent app that has a free component and one that has more features that has a subscription fee.

Always keep all of your apps and WordPress or whatever content management system you use up to date. New releases will have bug fixes, vulnerabilities closed, and new features to consider.

For more posts on cybersecurity and strategy, click here.

 

 

Setting Up Minimal Viable Security

Leave a reply

Setting Up Minimal Viable SecurityWhat is the minimum that a web owner or administrator should consider for the security of their site and the content? This is a question lots of people wonder about. They typically do not take any action until they have been compromised. Then it is too late. Setting up minimal viable security is actually quite simple, it just takes a little effort on a regular basis depending on the size and complexity of your site.

Always use a content management system. They will help you to be much more efficient and consistent with the design of your sit. WordPress is a very popular site that many web owners use. Always keep it and the templates you use up to date to protect from any vulnerabilities and hacking attempts.

What Other Things are Needed for Setting Up Minimal Viable Security

Choose Your Host Provider

Your host provider should have good account isolation between your account and anyone else who is on a shared server. If not, a hacker who gets into another site can easily migrate to your site and compromise it. There are lots of hosting providers. Choose one that has been in business for some time and one that has a good record.

Keep Your Content Management System Up To Date

Always update your CMS (WordPress), themes, and plugins as soon as they are available. Updates will include bug fixes. Updates plug vulnerabilities. New updates add new features. Always use a reliable source for any themes or plugins that are employed on your site.

Use Strong Passwords

Use a password generator to generate your passwords. They will be strong and more difficult to break using blunt force attack approaches. Always use caps, lower case, numbers, and special characters. Keep your passwords unique across various sites and applications to provide added security.

Delete Old Account Names

If you had a guest account or an account for a writer that is no longer doing work for you, remove the account. Only provide access to trusted resources with limited functionality.

Avoid using Default Account Names

Most content management systems including WordPress use the default account name, Admin. Everyone knows this and it is one less thing the blunt force hackers have to try to figure out if you are still using this account name, Change the name before you begin adding a lot of content. Rename your account name now if you are still using Admin.

Use Automatic Updates

If you maintain many sites, you will appreciate the time-saving nature of this suggestion. Also, it means that if an update is provided to plug a hole, your site will be updated quickly before anyone has a chance to break into it.

Install Firewalls and Malware Scan

Wordfence is one that provides both a free version as well as a paid subscription with more features. These systems will scan IP’s coming to your site. They monitor their activity. These systems will lock them out if they are suspected of nefarious activity. There are literally millions of attempted hacks every day. These systems are constantly updated to catch the latest techniques and block them.

This may seem a lot to cover for Setting Up Minimal Viable Security, however, in today’s world it appears that this is what we need to do to protect ourselves. For more information on cybersecurity and protecting your content, click here.

Cybersafety in Today’s Online World

Leave a reply

Website crashesMost people are aware of the threats and dangers of losing their identity or becoming victims of fraud. In addition, they may have heard the terms such as “phishing” and “smishing”. They did not exist a decade ago. For example, we all keep our doors and windows locked to prevent thieves from entering.  But leaving your computer and online accounts exposed is an invitation to cybercriminals to take advantage. Cybersafety is an increasing issue for many people.

The reality is that cyber safety has become an increasingly problematic issue for anyone who spends time online.  In other words, online banking, social sites, etc are all candidates that are constantly under attack.

Tips for Cybersafety in Today’s Online World

Choose powerful passwords. Use multiple passwords on different sites. In addition, change them frequently. For example use passwords that include a mix of upper case and lower case letters, special characters if allowed, and numbers.

Avoid Phishing Attempts. Don’t respond to unsolicited requests for confidential information. For example, your bank will never send you an email to request information. Neither will the government. If in doubt, delete the email and call your bank directly, etc.

Beware of the phish. Do not click on a link in an email, call a phone number. Never wire money or take any requested action. First, verify that a request is legitimate. Even emails sent to you by friends, family, and associates should be suspect.

Minimize sharing on social media. Avoid including personal information online, on social networking sites, and in emails.

Be cautious of public Wi-Fi. Use public Wi-Fi for browsing only. Avoid doing your banking online etc over unprotected Wi-Fi systems.

Personal information Privacy. The person sitting beside you can see your laptop screen.  Everyone around you will hear your conversation. Be aware of your surroundings.