Help keep your website safe by following these common security tips.
Use an SSL certificate (HTTPS):
Using an SSL certificate on your website and forcing its use as mandatory ensures that the data between the website and your users are encrypted.
Update your content management system (CMS) and plugins regularly:
If your website uses a CMS such as WordPress or Drupal, make sure to keep them as up-to-date as possible to ensure you are able to take advantage of the latest security patches.
Use a secure server:
Host your website in a hosting environment that is regular updated for security patches, and follows best-practice configurations for security.
Use strong passwords:
Require users to have secure passwords of sufficient length that include a mix of upper and lower-case letters, punctuation, and special characters. Dictionary words should be avoided.
Use a web application firewall (WAP)
A WAP can help provide protection by acting as an intermediary between the website and its users and inspecting traffic for attempts to exploit security vulnerabilities.
Maintain regular automated backups:
If all else fails and your website is compromised, you will want to have readily available backups of the website to minimize the amount of downtime when trying to rectify the issues