How to keep your website protected from hackers 

Written on 24 November, 2017 by Iona Yeung
Categories Security

The privacy and security of a website is critical for small businesses. It’s needed to protect your customer’s data but it also protects your website from hackers and viruses. With cyber attacks on the rise, it’s now more important than ever to ensure you have security measures in place to protect your website. A business disruption can be a costly exercise.

60% of businesses who experience a cyber attack go out of business within 6 months.  If your website needs a security update, here are 7 things you can do now to safeguard your business from cyber attacks.

  1. Use HTTPS for your website with a SSL certificate 

If you accept online payments or receive personal information from your customers, a SSL certificate ensures all website traffic between your web server and user’s browser is secure and cannot be read. When your website has an active SSL certificate, you’ll see that your website address changes from HTTP to HTTPS.

  1. Change your passwords

If you’re using one password for all your business logins, it’s time to change them. Ideally you should have a different password for every website you need to login to. Increase the strength of your passwords by mixing numbers, letters (lower and upper case) and symbols. "The alternative train of thought is to use unrelated dictionary words broken up with numbers and symbols. These offer the same level of complexity against computer attacks and are easier to remember. For example “Hotel3Planet5iceCream!” will take up to 252 Sextillion years (that’s 21 zeros!) for a modern desktop PC to crack. If you have trouble remembering all your passwords, consider using a password manager which keeps them protected and easy for you to access", says Fred Salem, Product Manager at Netregistry.

  1. Back up your data

What would happen if you lost all your business info i.e. customer contacts, invoices, emails…etc? Would you be able to run the day to day of your business? Whether it’s a virus or an accident with your computer, losing data is not uncommon. Back up your data at least once a month onto a hard drive and to an offsite storage service such as OneDrive (available with Microsoft O365), iCloud, Backblaze...etc.

  1. Keep your devices secured

These days your office isn’t limited to your desk. If you or your team receive work emails on your phone or tablet, have the security measures in place to prevent anyone accessing confidential data. Set up passwords for all your mobile devices and be ware of the files you download on all devices.

  1. Anti-virus software

Updating your anti-virus software may seem like a task that can wait but taking the preventative measures will save you from headaches in the event of a cyber attack. Anti-virus software detects potential viruses that can compromise critical business information. Here is a review of the top anti-virus software for 2017.

  1. Be aware of phishing emails

If you have a work email, it’s likely you’ll receive unsolicited emails from time to time. But there is a difference between spam and a malicious email. Phishing emails can come in the form of a request for payment, to open an attachment or to click on a link. Be aware of targeted attacks where a sender may pretend to use one of your internal addresses, these typically claim to be your internal IT or Security department. If you receive an email from an address you don’t recognise, do not open attachments or click on any links.

  1. Educate your team

If you have a team, it’s important to educate them about website security and privacy. Host regular training to ensure they’re equipped with the knowledge to keep their work and personal devices secured. This is especially important if they work on laptops or their phones as that is often the weakest security point. Look into establishing a Bring Your Own Device (BYOD) policy to ensure external devices don’t compromise your network.