Website Security and
If you don’t have a security plan in place for your website, eventually YOU WILL GET HACKED. Hacks and breaches come in all shapes and sizes and can have devastating effects on your site, server and the way your site displays on Google. Having found this out the hard way with numerous sites, we’ve created a custom security plan for all our clients to help maintain, protect, keep it backed up and reported on! Don’t take our word for it. See what the WordPress Security Pros say.
We created a custom plan to make sure your website is updated, backed up and protected.
You’re NOT Going To Want to Sleep On This Deal.
Why WordPress Sites Get Hacked
It is not just WordPress. All websites on the internet are vulnerable to hacking attempts.
WordPress sites are a common target because WordPress is the world’s most popular website builder. It powers over 31% of all websites; that is hundreds of millions of websites across the globe.
Insecure Web Hosting
Not Updating Version of WordPress
Each new version of WordPress fixes bugs and security vulnerabilities. If you’re not updating WordPress, then you are intentionally leaving your site vulnerable. As of October 19, 2018 the most recent version of WordPress is 4.9.8.
Not Updating Plugins or Theme
Just like the core WordPress software, updating your theme and plugins is equally important. Using an outdated plugin or theme makes your site vulnerable.
Security flaws and bugs are often discovered in WordPress plugins and themes. Usually, theme and plugin authors are quick to fix them up. However, if a user does not update their theme or plugin, then there is nothing they can do about it.
Make sure you keep your WordPress theme and plugins up to date.
Using Weak Passwords
You need to make sure that you’re using a strong unique password to login to the backend of your website, to your hosting company, FTP accounts. And, although it makes it more difficult to remember, different passwords for your accounts is more imperative in today’s world than ever.
Hosting Security Holes
Worst Cybersecurity Hacks of 2018
Russian Grid Hacking
In 2017, security researchers found Russian hackers infiltrating and probing the United States power companies. There is evidence that the hackers have direct access to an American utility’s control systems.
Critical infrastructures Energy, Oil and Gas grids are at risk.
In March of 2018, the Department of Justice indicted nine Iranian hackers over an alleged spree of attacks on more than 300 universities in the United States and abroad. The DOJ says the hackers stole $3 billion in intellectual property.
Under Armour App
Hackers breached Under Armour’s MyFitnessPal app in late February 2018, compromising usernames, email addresses, and passwords from the app’s roughly 150 million users. The company discovered the intrusion on March 25.
Google + Hacked
Google announced on Oct. 8 that it’s shutting down Google Plus. The decision came in response to Google uncovering a security vulnerability in March 2018 that potentially exposed the private information of up to 500,000 Google Plus users.
Critical infrastructure such as banks, Energy, Oil and Gas, Financial Services, Healthcare,
Malware & Scams to Watch
At the end of May 2018, officials warned about a Russian hacking campaign that impacts more than 500,000 routers worldwide. The attack spreads a type of malware, known as VPNFilter, which can be used to coordinate the infected devices to create a massive botnet. But it can also directly spy on and manipulate web activity on the compromised routers. These capabilities can be used for diverse purposes, from launching network manipulation or spam campaigns to stealing data and crafting targeted, localized attacks.
Password Stealing Malware
The Department of Homeland Security and the FBI said that North Korean hackers, code-name ‘Hidden Cobra’, have been using both Joanap, a remote access tool (RAT), and Brambul, a Server Message Blockworm, since at least 2009 to target companies working in the media, aerospace, financial, and critical infrastructure sectors.
A sophisticated hacking group is sending phishing emails to people all over the world. The emails contain malicious links that will infect the victim’s gadget with trojan malware. Believed to be from China. If infected with this malware, the attackers are able to steal victims’ credentials by logging keystrokes from their device. It can also give attackers remote access to compromised gadgets.
What is Your Counter Attack for eMail Phishing Scams?
Here’s a few ways to counter attack these scum bag scam artists.
- Do not follow web links in unsolicited email messages.
- Set up two-factor authentication
- Use unique passwords for multiple sites
- Use strong anti-virus software on all devices
- Backup your critical files.
How We Help Our Clients
Maintain & Optimize
Maintaining most recent versions of software reduces security holes.
- WordPress theme is monitored & updated
- Site optimized weekly
- Plugins monitored and updated
Your site is scanned daily. The firewall is a security net stopping hackers, bad bots and spam.
- Invalid Login Attempts
- Site Uptime and Downtime Monitoring
- Daily scanning
- Hackers & spam denied
- Reports on what’s been blocked
Your site is backed up weekly in multiple locations and can be restored at any time.
- Weekly website backups
- On-site & off-site backup locations
- Weekly points for quick restores
Monthly page views, site traffic reports, and training on understanding Google Analytics.
- Monthly google analytics report of page views and site stats.
- Walk-thru on viewing and understanding your stats
Rest Easy Knowing Your Site is Safe.
• Maintenance & Updates • Firewall Security • Website Backups • Custom Reports
We offer a price break for multiple sites
• Annual Security Plan offered at $59 savings for $649
• Hosting + Security options available
*No Contract, No Initiation Fee, No Termination Fee*
Your Questions. Our Answers
How does HTWM Website Security & Maintenance Plan Work?
Once you’ve selected the plan that’s right for you, a message is sent to Maintenance Crew of Hit-the-Web Marketing.
Within 24 hours you will receive a welcoming call. At this time, we will ask for your website login so we can go in, set up the maintenance features we offer in the plan. Each month we automatically go in and perform maintenance for you.
You can set back, rest assured that your website is backed up, WordPress version is up-to-date, the firewall is keeping out hackers and viruses, and the plugins are updated and checked on to ensure they are functioning properly.
Why should I choose Hit-the-Web Marketing Website Security & Maintenance Plan?
This is a low-cost insurance that your website investment is protected.