Don’t take any risks, secure your website with Security Plus
Danny, November 29, 2019
You can trust us on your website’s security. Every day we scan your site for viruses and malware. In addition, we update the WordPress core and plug-ins on a daily basis and protect your site against brute force attacks. However, these measures are not always sufficient. Data thieves and hackers are getting smarter and smarter and are constantly finding new ways to circumvent or crack security. By purchasing our Security Plus package, you’re safer from these attacks. By taking these extra measurements your website won’t become an easy prey for hackers!
What is Security Plus?
Security Plus is an all-in-one security, protection and virus removal solution for websites. At the core of our security package is the so-called Web Application Firewall (WAF). Instead of a direct referral to your web server, someone who visits your website is first referred to the WAF. Suppose that your website is a house. It’s not cool when people just show up at your doorstep out of the blue. In that case, the WAF serves as a gatekeeper to your home. Visitors must first pass through the gate over the driveway before they can reach your front door. This makes it possible to control and remove traffic at the gate. Malicious software and hackers will not reach your front door.
Our Security Plus package includes the following features:
- Web Application Firewall (WAF)
- Emergency DDoS protection. Filters and rejects all user agents that do not have JS enabled
- Intrusion Detection System. Filters aggressive bots and Blackhat SEO Spam injections
- Two extra malware cleanups per year per site. Also with starter pack or outdated core or plugins.
- On top of the daily scan, every 3 hours a new scan. 8 times a day
- CDN. Makes your site even faster by caching with global presence
- Extra extensive server side scanning from Sucuri
- Blacklist monitoring of Google, Bing, Norton, McAfee, Spamhaus, etc.
- Whois monitoring. An alert when WHOIS information changes
- DNS monitoring. An alert when DNS information changes
- SSL monitoring. An alert when an SSL certificate changes
- All communication with external security parties provided by Savvii
- Free installation and setting up of all monitoring
- Audit trails.
- Monthly security report
- Optional: Receive a ‘Verified by Sucuri’ badge for your site(s) and create more trust among your visitors.
Why should I secure my website?
You may find it hard to imagine what it’s like to break a leg if you’ve never broken one yourself.. The same goes for an attack on your website. Only once it’s hacked, and you experience the consequences, the importance of security become clear. People tend to think that it doesn’t happen to them or that they are not an interesting target. Unfortunately, regardless of the website or data on it, every server can be hacked by malicious parties. It is thought that hackers are only interested in bank or payment details. These cases are widely reported in the media. In reality, there are many more reasons to launch an attack. Below we explain why hackers strike.
This is the most common form of hacking. The aim is to discover hidden or secret data so that it can be abused. Data can, for example, be stolen for blackmail, looting bank accounts or being sold on to companies.
Hostage of data
This form of hacking is also reasonably well known to the wider public. A famous incident is the WannaCry attack on several government agencies and hospitals in 2017. In these cases, a server/computer is locked, after which the user only gets access to his data again after paying a fee.
DDOS stands for Distributed-Denial of Service. Simply put, this is an attack in which access is requested to a certain server/website from a very large number of computers or servers. A huge amount of request is than fired from this large computer network to a single server or website. This website/server is unable to handle all this data and will become difficult to reach or go down. The purpose of this attack is to shut down a network.
Take over infrastructure
This is the most unnoticed form of ‘hacking’ and is the most common one. The hacker installs a file on your computer that causes unwanted use of the computer or server. The purpose of the ‘hacker’ is to create a network of computers and servers with which a DDOS attack can be carried out. Since cryptocurrency has become popular, this system is also used to mini bitcoins and other cryptocurrencies. There are also infrastructure assumptions that are more visible. Think of redirects that are placed on websites to divert traffic or to gain link power.
Preventing is better than curing
This well-known proverb is a perfect fit with the security of your website. Being hacked is not the end of the world, but perhaps the end of your website. You might wonder what damage a hacker can do. Consider the following loss or damages:
This means the damage to your data or server. In many cases, a simple malware removal is enough to solve the problem. In other cases, data is corrupted and can’t be restored. In such cases, a backup should be restored as far as it is available. Think of any turnover you lose during the downtime of your website. But also think about the costs you incur to solve the problem.
Much worse than material damage is often the damage to your reputation. Think of the trust of your visitors who assume that your website secures their personal data. Google will also check your website for flaws in your security and the inaccessibility of your website when it is down. In the worst case, your IP address will be blacklisted and you will have to move to an entirely new server. This is most common with email servers which get a negative SPAM score.
What a hack attack actually costs you is hard to estimate. Of course, this differs per attack and per victim. Amazon will suffer more damage if they are not accessible for one day than if my blog is not accessible for one day. So you have to ask yourself the question: “What do I get out of my website?”. Assume that you can’t be reached for at least one day. How much does that cost you? Then add another day’s worth of turnover for the man-hours needed to solve the problems. This is the minimum amount you can lose. If this amount is higher than 200€ per year, Security Plus would not be a luxury for your website.
Check out our support channel to find out how to install Security Plus on your website.
More information about the costs of the Security Plus package can be found on our Security Plus page.