There are several important tips you should always follow to keep your account as secure as possible from hackers and bot attacks.
-
The most important would be to keep your password strong & secure. Never share your password with anyone.
We recommend using a free password manager such as KeePass or LastPass to store your passwords in a secure encrypted storage. See "How to choose a strong password" for tips on how to choose a secure & strong password.
-
Make sure your personal computer has a firewall and antivirus/malware scanners to prevent it from being infected with viruses, trojans, keyloggers, etc.
-
Insecure file/folder permissions are another security risk. Do not use '777' permissions on any folders or files. The correct permissions are usually 755 for folders and 644 for files. Using '777' permissions will usually cause an error to appear on your site as these permissions are blocked by our security software.
-
If you are using any kind of PHP forms on your web site for contact us pages, or registration forms, make sure they are using some sort of spam-bot prevention method such as CAPTCHA or reCAPTCHA to prevent spam bot attacks on your website. These are a very easy target for spam bots and allows them to send out SPAM from your account.
-
Outdated scripts or unnecessary scripts which are no longer being used are a big security threat to the safety of your account. If you are not updating your scripts and applying security patches released by the developers of the script, you are endangering your account of being hacked due to the security vulnerabilities. Please make sure to regularly update and apply any security patches for scripts on your account.
If you have any abandoned scripts installed on your account, remove them. The unused scripts are usually forgotten, left unmaintained and become a security risk for your account.
