Website security is not something that nonteckie website owners think about on a regular basis – if at all. Maybe it’s like home insurance, you only think about it when something happens!

Let me get something out of the way first though, no website is 100% secure. The good news is, is that you can make it more secure than most other sites out there with the right knowledge and advice.

Have you ever thought what you would do if your website was ever hacked and taken down, or taken over and the hacker demanded money to give it you back? It happens. The worst-case scenario is that you have to pay for a brand-new website build. That is the worst case and the developers should have at least a copy of it, even if an old one. Without scaremongering, you can indeed get a new site built and make it even better, but if the security features still aren’t there, then you’re going to run into the same issues at some point.

One website that we look after, I set it so each time someone tried to gain access, I received an email. I was receiving over 30 emails an hour at one point. It’s not as though someone is sitting there – it’s automated and the software the hackers use is looking for vulnerabilities. So, if you think your website is sitting there under the radar, I’m afraid you’ll be mistaken.

So, what can you do?

  1. Get a good quality security plugin for the website
  2. Look to see if you can get the website to sit behind a firewall
  3. Check to see if your website shows https in the address bar showing if you’ve got a security certificate
  4. Take regular backups of the site
  5. Keep all plugins, themes (and WordPress if applicable) up to date

Again, it’s not going to make your site impervious to everything but most attacks. But if the worst were to happen, at least you have a backup and can reinstall it.

Alternatively, pay for a professional company to do it and then it’s their responsibility to look after it all.