Website Security News
When you build or remodel a house, construction workers create a strong framework that can withstand the elements to keep your home and possessions secure. But what happens if you ignore proper building codes and inspections? The resulting risks to health and security are unacceptable….
For years, Google has been actively seeking ways to encourage website owners to implement SSL certificates. SSL allows websites to be accessed over HTTPS, which encrypts information sent between the…
Read More about Google Warnings For Form Input Over HTTP Coming in October
If you suffer multiple reinfections and your site is one of many in an account, the odds are high that you’re suffering from cross-site contamination. Cross-site contamination is when a…
Read More about What is Cross-Site Contamination and How to Prevent it
There is no more frustrating experience than knowing you need something, but not knowing which questions to ask. This resonates with website owners when they are told they need to…
Read More about Ask Sucuri: Common WAF Questions and Concerns
In 2016, I shared some thoughts about firewalls in general; their history and purpose in the information security domain. The point of the article was to help website owners differentiate…
Read More about Website Application Firewalls (WAF) – Practical Approach to Website Security
In the field of Information Security (InfoSec) we like to use the phrase defense in depth. Like many things, it is a borrowed term with roots dating back millennia (216…
Read More about Accounting for Defense in Depth in Website Security
Having your website hacked can be a devastating experience for any website owner. Unfortunately, many website owners rarely know they are infected until days, if not weeks, after the compromise…
Pharma hacks are common website infections categorized under SEO spam. With pharma hacks, the attacker exploits vulnerable websites to distribute pharmaceutical content to search engines and the sites visitors. Symptoms of…
Read More about Cleaning the Wp-Page Pharma Hack in WordPress
The Payment Card Industry Data Security Standards (PCI DSS) is a set of security standards established in a joint venture between a number of the top credit card issuers in…
Read More about PCI Compliance for eCommerce – Choosing Between SAQ A and A-EP
As website attacks continue to evolve, we see growing levels of sophistication in the way attackers are expanding the economics of their industry. The monetization potential of attacking websites continues…
Update: We have created a guide to help website owners learn how to implement SSL on websites for free. Much of the web continues to march towards creating secure communications…
Read More about Troubleshooting Mixed Content Warnings with HTTPS
