A safe website is often one of the most important factors for your prospective customers to choose to shop from you. There are countless cases where customer and credit card information has gone astray due to a lack of security. By taking some simple steps, you will give your customers a much more reassuring customer experience when they visit your website.
HTTPS (Hyper text transfer protocol secure)
The first thing to watch out for is that the website has the TLS/SSL certificate installed. SSL makes a secure and encrypted connection between the browser and the server of the website. The certificate provides an additional security for sensitive data that you don’t want others to get hold of. This is especially important for those who accept card payments, such as online stores. To check if a website has an SSL certificate, look for the padlock next to the URL.
Keep your website up to date
Undated versions of plugins and CMS (e.g. WordPress) can impair security. Keeping the website up to date reduces the risk of attacks of bots and viruses. Now WordPress has also released an update, so your plugins update automatically when a new update comes out.
Also be sure which plugins you use in your CMS, as plugins are made by third-party players. A tip is to look at the number of settings and any mentions of the plugin or developer.
First of all, one should have different and difficult passwords on the administrator panel to its website. As an additional security, one should use what is called 2-factor authentication. This will give you a one-time code by sms/mail/google authentication app used to log in, as well as username and password. 2-factor authentication can be set up in WordPress, and there are both free and more advanced solutions that cost. We can recommend Wordfence’s 2-factor authentication. https://www.wordfence.com/help/tools/two-factor-authentication/
Back-up your website
If your website becomes infected by malware, then the worst scenario may be that the website becomes useless. Then it’s okay to have a back-up so you can get back all the content on the website. Taking a back-up can be done with the Plugin Updraftplus. Here you can also choose whether to save the back-up on-premises or in a cloud service such as Google Drive or Dropbox. There is both a free version and a version that costs.
Some web hosting providers have automatic back-ups included. One of these is One.com who has 24/7 support if something goes wrong with your website and is very helpful in showing you how to upload an old back-up to your website.
With One.com you get daily back-ups of your web space, database, emails and more.
Have a monitoring program
Having a plugin or application that regularly investigates and provides notice of something unanticipated happening with your website helps to limit the damage. Some plugins also let you know when someone logs into the admin panel in, for example, wordpress, so you have a full overview of your security. A plugin that both hare a firewall and regularly investigates whether potential attacks are Wordfence secutiry.
Bonus! Use Captcha on “forms”
If you accept customer information through contact forms, we recommend using what is called captcha. This prevents bots from abusing your forms and you don’t have to experience unnecessary spam. Through google one can use the solution recaptcha that we recommend and use for our customers.
Do you have any further questions about security?
Of course, if you didn’t get an answer to what you were wondering, we always want to help to get your website completely secure. You can always contact us by email or chat:
e-mail: [email protected]