Most companies today have a website, it is an expected form of marketing that everyone understands and is familiar with.
However website owners need to be aware that this innocent form of marketing can and in some cases be the death of the business. This is a very strange statement however, is it true because the website portal is also in many case the entrance for cyber-criminal to infiltrate the organisation. If cyber criminals get into the company website they can do untold amount of damage not only to the company but in many cases any person that has access the infected site.
A website owner is normally the business owner, and as such they must make sure that the websites are fully protected. Business managers are still not patching and updating their websites and servers as often as they should. This in effect is leaving the front door open for the cyber-criminal to enter your home and take advantage of whatever they find.
Over the past three years it was reported that more than three quarters of websites scanned contained unpatched vulnerabilities, and in 2015 more than fifteen percent of which were deemed critical.
One of the major factors in vulnerabilities is the fact that the website administrators do not update the software as an when an update is released. Plugins are also a major problem, many websites are built by building blocks of code all added to the source code used by the website developer. These plugins tend to be problematic; they are normally designed by developers who have created a code that allows the site to perform a particular function. However, they tend to concentrate on the function rather than the security of the plugin.
In a recent report it suggested that in 2015 there were 679 vulnerabilities in such well known plugins including Adobe Flash Player, Apple and Chrome plugins. This was a significant increase compared to 2014 which a similar comparison shows there were 336 vulnerabilities.
Website administrators must do their due diligence on any plugins that they choose to upload, make sure that they update the plugins regularly and make sure to watch the media and security lists for warnings.
As stated previously the website can be a life line for many companies, allowing many people access to the companys products and services. However it can also be the death if the companys servers and website become compromised by cyber criminals. Email security is a facility that every compnay should adopt, encrypted emails are a solution to this problem.