HughesNet Internet Continuity

A Website Security Checklist for Small Businesses

No
small business continuity plan

For a small business, website security might feel intimidating and complex – but it doesn’t have to be. Here we offer six simple tips to secure your website and ensure small business continuity.

1. Conduct Regular Software Updates

This seemingly unimportant task can have a huge impact on your website’s security because cybercriminals can easily target plugins and themes that are not up to date. Keeping software updated is an easy and effective way to help secure your small business website and maintain small business continuity.

2. Customize your WordPress Admin Path

The URL you go to in order to access the back-end of your website is known as your “admin path.” For a small business that uses WordPress, you can access the back-end by adding /wp-admin to the URL. If your URL is example.com, your default admin path to edit the website is example.com/wp-admin.  Because all WordPress sites can be accessed with this path, it is easy for hackers to find your website login screen – unless you change the default path. You can do this by following these instructions to download a plugin.

3. Use Strong Passwords

Password security is an essential component of every cybersecurity plan and one of the simplest to implement. Here are a few recommendations to help you manage and safeguard the passwords that, in turn, safeguard your website.

Don’t Reuse Passwords. 

Think about it this way: If a hacker gains access to one of your accounts by stealing your password, how many other accounts could they infiltrate? By using different passwords for every account, you can help ensure that one compromised account won’t impact the rest.

Keep Written Passwords in a Safe Place.

This advice is as old as passwords themselves, but it’s no less relevant today. If you find yourself struggling to manage all your passwords, consider using a password manager like LastPass, which generates strong passwords and remembers them for you. If you decide to write down your passwords (which has inherent risk), make sure to keep them in a safe and secure place.

Use Longer, More Complex Passwords. 

A longer password is almost always a stronger password. While eight characters is often the minimum, you should aim for as complex a password as you—or your password manager—can remember.

Check out this post to learn more about password security best practices

4. Make Sure Your Website Has an SSL Certificate

Perhaps you’ve noticed that some websites begin with “http” and others begin with “https.” Websites that begin with “https” use SSL or “secure sockets layer” certificates. An SSL certificate is encryption technology to secure communications between a web server and a client browser or a mail server and a mail client. SSL certificates help ensure all information – from card numbers to contact form data – is protected. This article outlines steps you can take to add an SSL certificate to your website.

5. Provide Employees with Proper Training

Many cyber attacks can be traced back to employee negligence. With that said, your entire team should undergo regular cybersecurity training so everyone is fully educated on potential risks. ESET is a cybersecurity technology company that provides free, online training courses that can help boost your employees’ cybersecurity awareness. These courses can teach your team how to detect and respond to suspicious behavior and activity before it’s too late. 

Cybersecurity should be a priority for businesses of all sizes. By following these best practices, you’ll help your business keep your website secure and maintain small business continuity.

††$60 instant savings applies to new subscribers. Offer ends 12/28/21. Restrictions may apply. Offer void where prohibited.