Summary

Small business websites left wide open for attack. Read our quick guide on how to harden your Security measures for your website.

Website Security Quick Tips

This guide is designed to provide quick wins to build security into websites and provide trust to potential clients.

Security Hardening

Make sure all web server applications are updated on a regular basis, new security flaws appear all the time in Flash and Java for example. Outdated software should be removed or deleted off the server.

Daily Website Scans

At server level employ vulnerability scanning software. This can quickly highlight the latest vulnerabilities and provide a detailed report on the potential attacks your website could suffer.

Shopping Carts

If you accept major credit cards (Visa, MasterCard, Discover, American Express), you are now required by the Payment Card Industry Security Standards Council to become compliant with the Payment Card Industry Data Security Standards (PCI DSS). Meeting this compliance will provide peace of mind to potential customers that your organisation considers their information seriously.

SSL

Install a SSL certificate by a trusted CA (Certificate Authority) By using a connection with such security features, the user can be more confident that their account is safe from hackers.

Penetration Testing

Yearly Penetration testing is good security practice. Prevention is better than cure.

Logs

For all servers, organisations should ensure logs are written to dedicated logging servers or write only devices, reducing the risk of an attacker manipulating logs stored locally on compromised machines.