Website Security - SiteVision Store

Are You At Risk?

Website Application Vulnerability
An Increasing Threat

Recent breaches of historic proportions – think Anthem and Target, to name but a few, have confirmed that proactive web security measures are now a must for websites of all sizes and types. A primary scanning, analysis and reporting tool is that of Website Application Vulnerability Scanning. We can help.

Why Scan?

Website Application Vulnerability Scanning is designed to seek out security flaws, test systems for the occurrence of these flaws and then generate a report for appropriate remedial actions if necessary.

Among motivating factors for scanning are regulatory compliance such as HIPAA, and PCI, and/or changes to software, applications or website configurations. In the first case, compliance is required. In the latter, web changes can open up crippling security risks without your knowledge.

SiteVision’s Full Featured, Vulnerability Scanning Is Inexpensive and Thorough.

In a constant effort to improve service and security for our customers, we have instituted vulnerability scanning that is compliant, thorough and cost efficient. Our scanning protocol detects common vulnerabilities such as cross-site scripting and SQL injection attacks, along with other industry recognized threats.

Vulnerability Scanning is used to help organizations improve their overall risk posture and security readiness, as well as to comply with mandatory regulations, including security requirements. All definitions for scans are updated on a daily basis and the latest vulnerability detections are always included in the scans.

The scanning process includes discovery, detection, verification, risk classification, impact analysis, reporting and mitigation. A comprehensive report is issued for each scan.

We offer this service for $35.00 a month, or $95.00 a quarter. You can call or contact us here to initiate monthly or quarterly billing. We also offer remediation of vulnerabilities, and can offer a statement of work at any time. Remediation pricing is available upon request. Any other questions? Just give us a call at 540.343.8322 or 866.345.8322 toll free!

Thanks,
The SiteVision Support Team

Securing Your Content Management Website

Important Tips and a SiteVision Option

[image source_type=”attachment_id” source_value=”5602″ align=”left” size=”small”]Websites are generally built to display information in the form of content, and in the last decade managing that content has become much easier due to the widespread use of a Content Management System often abbreviated as “CMS”.

The most popular CMS by far is WordPress, with an impressive 60.1% of the CMS market share. With widespread popularity comes vulnerability, and many WordPress sites are susceptible to attack due to running outdated, unsupported versions of the WordPress software. It’s also worth noting the 50 most downloaded plugins for WordPress in 2013 were also vulnerable to attacks such as SQL injections and Cross-site scripting (XSS).

These issues are not unique to WordPress. All CMSs are susceptible to security risks, and it’s equally important to maintain updates no matter what your platform

The purpose of this article, however, is not to persuade you to abandon WordPress or other CMS Systems. In fact, we use WordPress every day, and chances are you’re reading this on a WordPress-based website. Our intent is to point out security risks, but more importantly to discuss solutions – updates!

Your operating system, software, smartphone, and maybe even your car need updates in order to function at their highest capacity. Software and firmware are often made up of a constantly evolving library of code, and developers are constantly improving those libraries by fixing bugs and vulnerabilities. Updating the WordPress software just once monthly can greatly reduce your site’s chances of falling prey to malicious hackers.

5-Point Plan for Successful, Secure CMS Hosting

Solid, secure hosting.
Monthly audits of all sites to confirm software is current
Monthly updates for sites running on outdated software.
Research all plugins for security issues.
Check all plugins during monthly audits and update all that are outdated, along with CMS software.

As mentioned earlier, plugins, and even themes can be a security risk mostly due to insecure coding practices opening up vulnerabilities in even the most up- to-date WordPress installation. This makes it equally important to vet each before installation and to maintain updates regularly. Unfortunately many themes and plugins can be quite buggy after updating the WordPress software, which leads many to use outdated software.

A SiteVison CMS Update Management Option:

Here at SiteVision, we host and maintain sites based on a variety of CMS platforms – Mura, Joomla, Drupal, WordPress and many more. Some of our users feel uncomfortable updating their CMS software, patches and updates internally. Additionally, some simply don’t have the resources or time.

SiteVision is proud to offer a CMS Management Option. We perform monthly audits, updates on all CMS software, plugins and themes, to ensure that the hosting solution we’re offering is custom tailored to your specific needs. Again, this is not WordPress specific, there are many CMS options that have unique features for your unique needs. Just email us, or give us a call for additional information.

Why SiteVision?

We’re your advocate. SiteVision has been providing web development and hosting services to government agencies and non-profit organizations for over 20 years. We understand how overwhelming it can be to seek out a reliable solution for you website, custom application, and hosting needs.

At SiteVision we are passionate about creating solutions for customers that make their life better. We excel at understanding your business process and developing an application that is easy to learn and operate. We will always be fair, knowledgeable, honest, and professional.

Work With Us