How to Limit Security Risks From Plugins

This article is from Ask WordfenceWordPress Security on November 8, 2017 by Dan Moen

“According to survey results we published last year, vulnerable plugins are the top way that attackers gain access to WordPress sites. Reducing your plugin security risk is one of the most important aspects of protecting your site.

There are a number of things you can do to limit the risk of security issues on your site.

Use as Few Plugins as Possible

Every plugin you install on your website increases your “attack surface”. You are running more code, so your odds of having a security vulnerability exploited go up. Every plugin you add to your site also represents another developer you are relying on to keep you safe. That includes writing secure code, responding quickly to vulnerability reports and keeping your best interests in mind.

Only Download Plugins From Reputable Sites

If possible we recommend that you limit your plugin downloads to the official WordPress.org plugin directory. A great team of volunteers manages it, alongside a large community of users and security researchers helping out.”

> Read full article

Amazon Prime Redefines Online Shopping

If you are a regular online shopper, chances are that you have an Amazon Prime account.  Through this service, we have all become accustomed to our purchases arriving on our doorstep in a blink of an eye.  Amazon has made 2-day free shipping the norm.

“As the number of Prime customers increases, it’ll be even more challenging for competing retailers to attract customers that are used to two-day free shipping and receive other Prime perks like free streaming of music, movies and TV shows.” ~Internet Retailer

There is even ‘Amazon Prime Day’.  The web sales from Prime Day are right on the heals of days like ‘Black Friday’ and ‘Cyber Monday’.  > Read more

 

Always Make Those Security Updates

Each orange dot is a unique infection by WannaCrypt ransomware as recorded by MalwareTech.com
Courtesy of malwaretech.com

“So this attack is raising one of these fundamental issues that we talk about in the security world, about whether NSA surveillance protects people or creates unexpected damage that does more harm than good.”

“Wana Decryptor exploits a Windows flaw that was patched in Microsoft’s Security Bulletin MS17-010 in March. But on machines that haven’t been updated or patched, the malicious code encrypts all of an infected machine’s files — and then spreads itself.”

Always do your security updates promptly…

Read more

Client Testimonial

“Thank you so much for all of your hard work on, and continued assistance with, our website.  It’s been such a pleasure to work with you on this and we’re so grateful that you are always so patient with our questions!  We couldn’t have done this without you!”

Lauren & Deborah
yesyoucandance.org

The Human Experience Online

“The best teams of 2017 will engage users not as bags of data to be harvested, but as human beings who deserve good, useful, meaningful products and services that are honest and fair in their operations. This will require looking at people not merely as “users” of a technology, but as humans. And it will require looking beyond users to the communities they live in. Technology is a given today, so a focus on the HX – the human experience – will reveal how to build tech that really works for people – and benefits the team in the process.”   ~Mark Hurst, Creative Good

Now that web representation is no longer a novelty, how will you create the ‘human experience’ atmosphere for your site visitors?  As preached for 20 years by Creative Good, listen first to your customers.  Know what they want and what they need to be successful.  Clearly, the sweet spot is between too little and too much.  Honesty, trustworthiness and ingenuity will play a lead role.

Go to Creative Good to read more ->