• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • About
    • Secure360
    • UMSA
    • Get Involved
  • Events
    • Secure360 2021
    • Student360
    • Past Events
      • 2020 Secure360 Twin Cities
      • 2020 Student360
      • 2019 Secure360 Twin Cities
      • 2019 Student360
      • 2018 Secure360 Twin Cities
      • 2018 Secure360 Wisconsin
      • 2018 Student360
      • 2017 Secure360 Twin Cities
      • 2017 Student360
      • 2016 TC Secure360 Conference
      • 2015 Secure360 Conference
      • 2014 Secure360 Conference
      • 2013 Secure360 Conference
        • 2013 Secure360 Conference Speaker Presentations
      • 2012 Secure360 Conference
  • For Sponsors
    • Secure360 Twin Cities
    • Student360 Sponsors
  • For Speakers
    • Secure360 Speaker Details
    • Student360 Speaker Details
  • Blog
  • Nav Social Menu

    • Facebook
    • LinkedIn
    • Twitter
    • Vimeo

Secure360

5 tips to protect your company website from attacks

March 7, 2016 by Secure360 and UMSA

tips for website security

Copyright: Pixabay

You likely don’t leave the door to your home unlocked when your family is not there—thieves are more likely to steal from a home that is unlocked. In the same way, leaving your website unlocked and unprotected is like leaving an open door for hackers to steal valuable customer or company data. A breach can have damaging effects on a businesses reputation that are hard to undo, but there are steps to take in advance to prevent attacks on your company website.

1. Keep platforms and scripts up to date

One of the best and easiest steps you can take to protect your website is to make sure any platforms or scripts that have been installed are up to date. Many of these tools are created as open-source software programs, which means their code is easily available—both to good-intentioned developers and malicious hackers. Cybercriminals can find security loopholes that allow them to take control of your website by exploiting any platform or script weaknesses. To enhance the security of your website once your platform and scripts are up to date, look into and install security plugins that actively prevent against hacking attempts.

2. Tighten admin controls

The admin level of your website provides easy access into all data and information that you likely do not want hackers to have access to. It is important to keep tight admin controls and access by enforcing user names and passwords that cannot be easily guessed, changing the default database prefix from “wp6” to something more difficult to guess and limiting the number of login attempts within a period of time. Reset passwords occasionally and never send login details by email, as e-mail accounts can be easily hacked.

3. Consider installing a firewall

A web application firewall will sit between your website server and the data connection and reads data and traffic passing through it. Typically firewalls block all hacking attempts and also filter out other types of unwanted traffic, like spam and malicious bots. Firewalls have been, and should continue to be, an integral part of multi-layered defenses for both business and personal security alike.

4. Limit file uploads

Regardless of how thoroughly your system check out files before uploading to your website, bugs can still get through, allowing hackers access into your files and system. The best solution is to prevent direct access to any uploaded files. Store them outside the root directory and use a script to access them when necessary. Your web host will probably help you to set this up.

5. Stay informed on threats

In order to protect yourself from threats, it is important to stay informed and educated on what kind of cyber attacks are currently threatening the industry. Cyber threats are on the rise and new methods of attack seem to arise daily. Here are a few of the biggest threats predicted for this year.

Has your company website been hacked in the past? What other tips would you recommend to businesses working to keep their website secure from hackers? Comment below with your thoughts.

Filed Under: Business Continuity Management, Cybersecurity, Risk and Compliance

About Secure360 and UMSA

The Secure360 and UMSA team is made up of professionals in the security and risk management industries. Topics of expertise range from physical security, IT, risk management, cybersecurity, cloud, information security and records management.

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Categories

  • Uncategorized
  • Guest Posts
  • Business Continuity Management
  • News and Events
  • Physical Security
  • Cybersecurity
  • Professional Development
  • Risk and Compliance

latest tweets

  1. Marketing Envy
    Marketing Envy: [New Blog] 2020 saw in-person conferences evaporate, but with vaccines rolling out, 2021 could be different. H… https://t.co/4YONwZNsDa
    about 4 days ago

  2. Secure360 Conference
    Secure360 Conference: We are honored to be listed on the Top 20 Cyber Conferences for 2021 -> https://t.co/MnrQ3E5ifw
    about 6 days ago

Footer

Contact

For more information about UMSA events, contact: Marie Strawser

Email List Signup

Join our email list for monthly Secure360 news and updates!




Join our tradeshow email list for updates on sponsorship opportunities and upcoming exhibitor deadlines.

Sponsored by:
© 2021 Secure360. All rights reserved.