Essential Web Security: Staying Up-to-Date
We all know the Internet is a massive collection of sites with tons of content and functionality, and every website needs to be provided with website hosting and methods for making updates. A compromised website might redirect users to a malicious site which attempts to infect visitors with malware. For this reason, all hosting and updating needs to be secure for the safety of the website managers, as well as their visitors. Even the website for a Certified Ethical Hacker program was spreading malware for over three days before being fixed, which is somewhat ironic.
If it isn’t already, your website needs to be protected from malicious activity.
When providing website hosting and content management systems (CMS), one of the first things we tell our clients is to make sure both your server and CMS are kept up-to-date to prevent malicious activity. For example, there are thousands of websites on the Internet today using a version of OpenSSL that is over one year old. There have been important security patches made, which many of those websites haven’t applied. Similarly, WordPress is used by some of the biggest brands out there, but their websites won’t be secure if they don’t apply updates to protect themselves from newly discovered security issues.
For these reasons, Amperage has automated our website hosting’s security updates and have complete lock-down of the WordPress core files. We keep a constant eye on the next version available so we can update all of our hosted WordPress sites in one step. We constantly strive to provide a managed WordPress hosting environment which keeps our clients safe.