Best practices & benefits of keeping websites secure and backed up

With recent high profile hacking cases, like ‘WannaCry’ that has effected the NHS and various organisation worldwide and other previous cases like the Yahoo hacking making international headlines, keeping websites secure, your data and that of your customer’s, safe whilst online should be top priority when considering your website project and your hosting provider.

So what can you do to ensure your website is secure and safe?

Website security; HTTP or HTTPS – that is the question?

At the start of 2017, Google announced a change in how it would be viewing and ranking website security.

Google quote:

‘Starting January 2017, Chrome 56 will label HTTP pages with password or credit card form fields as “not secure,” given their particularly sensitive nature.

Eventually, we plan to label all HTTP pages as non-secure, and change the HTTP security indicator to the red triangle that we use for broken HTTPS.’

We’re all now familiar with looking for the https and secure padlock symbol when making payments online, but this is now being ramped up to cover pretty much any site that intends to capture some of our data, i.e. usernames and passwords as well as transactional information so going forwards, every website will require an SSL.

So what does this mean to you as a website owner?

To convert from the standard HTTP to HTTPS, S meaning secure, you need an SSL certificate added to your CMS.  Squiggle can advise on the best SSL solution for the type of site you have i.e. for E-commerce sites we’d recommend a more advanced solution.  Contact us with any questions you may have on SSL through our contact form.

Is there anything else I can do to protect my website?

In addition to a security licence, there are further measures we can take to beef up your security, keeping websites secure and protecting against:

  • Hackers
  • Online viruses
  • Malware
  • Server crashes
  • Accidental user error or deleted files

to ensure your site can be restored quickly with minimal business downtime.

Depending on how savvy a website user you are, at Squiggle we offer a range of hosting and maintenance solutions comprising of four Squiggle Security Suite packages with increasing levels of maintenance support and features depending on the sort of site you have and the type of hands on help you’ll require to keep your website backed up, CMS plugins updated and secure.

Once your website has gone live it’s typically over to you to promote, post and maintain it.  However, that can be a daunting task if you don’t feel like a technical whizz.

Whilst the front end posting of page content, images and blogging can seem straightforward enough, the behind the scenes maintenance updates may feel a step too far and that’s why we’ve created our new packages to help.

We want to offer peace of mind for all our customers’ so let’s break it all down…

What will I get?

  • Website back ups

Website backups are stored copies of your site; all design themes, pages (including all media content), posts and comments, widgets, settings, users and menus.

  • WordPress platform updates

As an open source website solution, WordPress itself has regular updates to keep it working as expected in all the latest browsers, security fixes and other bug fixes that need applying to keep it working.

  • Plugin updates (within WordPress)

Plugins within your WordPress site, for example Yoast SEO also get updates and these will need to be done manually, as and when they notify you.

  • Alert manager for any hostile activity

The alert manager is part of the security suite that tracks any potential hostile activity on your site and will send an email notification to you should any action be required.

Essentially we’re providing an ongoing health check for your website to keep it in tip-top condition so that it retains its visibility and SEO rankings to continue providing you with a valuable online presence.

If you have any questions or wish to discuss the security of your site then pop me an email through our contact form.