We use cookies on the site to improve our service. By clicking any link you are giving consent for use of cookies. Click here for more information

Protect Your Website

Whether your business operates an ecommerce or marketing website, it is essential to protect it against attacks from hackers as well as technical failure. The consequences of not doing so include loss of service, reduced revenue and damaged reputation. 

The Risks

  • Theft of customer information, such as addresses and payment card details.
  • Website defacement and denial of service attacks by criminals attempting to disrupt your business, typically to extort money.
  • Damage to your reputation.
  • Website failure due to infrastructure or power supply issues. 

Protect Your Website

If you are hosting your own website rather than using a third party hosting company, ensure that the hardware and software is secure:

  • Use the latest version of any web platform or ecommerce software. Old versions may have flaws that hackers can exploit.
  • Use strong, protected passwords throughout the system. Do not leave any password set to its default value. Change passwords periodically.
  • Maintain regular backups of your website.
  • Where the platform offers the option of two-factor authentication, use it.
  • Make sure the server is protected by an effective firewall and antivirus/antispyware software.
  • Monitor log files carefully to spot any attempts at intrusion.
  • Never store customers’ private information and credit card details on a public ecommerce server.
  • Protect your SSL details and keep them confidential.
  • Consider using a professional penetration testing firm to test the defences on your ecommerce server.

If you choose to use a third-party hosting company:

  • Review its security and availability policy and arrangements.
  • Check that the service level agreement is adequate for your needs. 
  • Consider using a professional penetration testing firm to test the defences on your hosting company’s server.

 

See also...

 

Remote and Mobile Working
Keeping connected away from the office must be secure. Here’s how.

Data Protection Act
The Act carries serious obligations. Make sure you comply. 

Information Access Management
Control who has access to what business data.

Business Continuity & Disaster Recovery
How to maintain ‘business as usual’ if things go wrong.

 

Passwords
Choosing and using passwords correctly is very important. 

Taking and Making Payments
Security criteria for taking and making electronic payments.

Data Encryption
Prevent unauthorised people from accessing your valuable data.

Cloud Computing
Some advice about keeping your business secure in the cloud.