From time to time, cyber attacks of different levels happen all over the world. The 2016 Dyn cyber attack caused multiple services to be unavailable, including Twitter, Amazon, PayPal, and Netflix.
After hearing such news, you want to act immediately to protect your online store and business, don’t you? This post will give you the bare minimum that helps to keep your store safe from the majority of cyber attacks. The sooner you implement these recommendations, the better.
Ecwid merchants won’t have to follow many of them, though. Ecwid conforms to the highest international safety standards that make your store as reliable as a large bank. So your store and your customers are safe. However, the following advice will be useful not only for online store protection but also for your everyday internet surfing.
Security Tips for Everyone
Please, don’t put off completing these steps.
1. Make sure you are the owner of your domain
If you’re using your custom domain name, and especially if it wasn’t you who bought it (but your IT guy, manager, or contractor), check who is the owner — it should be you. Otherwise, another person (or organization) owns your domain name, and they can technically sell your domain name or appropriate it to a different website.
In case your domain is registered with another person’s name, move it to your account using the instructions of your domain provider:
If you are about to buy a domain name, don’t assign this task to a contractor or at least make sure you are the owner. The owners of transnational corporations should register domains with their names too. Remember your login and password, as you’ll need them when it’s time to renew your hosting subscription.
2. Make sure you are the owner of your hosting subscription
If you need hosting for your online store (for example, if you added it to your WordPress.org, Adobe Muse, or Joomla website), make sure that you own your hosting subscription. Otherwise, you run the same risk as when trusting your domain name to someone else. The owner of your hosting account will be able to do anything with your website, even delete it.
You should also keep the login and password of your hosting account for renewing it.
Tip: Use hosting providers with a good reputation, for example, GoDaddy or Name.com. It’s even better to use a hosting provider that is adjusted for e-commerce. A drawback of that kind of hosting is the higher pricing.
3. Exclusively create strong passwords
Protect your accounts with strong passwords. Use recommendations from Google:
- Create a unique password for every account
- Your password should consist of at least 6 characters
- Use a mix of letters, numbers, and symbols
- Use upper and lower case
- General words and common expressions
- Keyboard patterns like “qwerty” or “12345”
- Personal information: names, addresses, ID numbers, and other.
Change all your passwords to stronger ones, from your online store dashboard to your email and social media. Change passwords every time you share your accounts with a contractor or fire an employee.