Security News

Google forces HTTPS to make sites more secure.

Google warns website owners to switch from non-secure HTTP to HTTPS, or risk losing traffic. Google is now sending out emails to Search Console users saying that if you don’t switch from your non-secure HTTP website to HTTPS, then you risk losing traffic and have a “NOT SECURE” notification pop-up on your website for all…

Read More

Automatic Blacklist Of Known Offenders & IP Addresses

Blocking attacks from specific global locations and known sources of spam attacks will drastically reduce the amount of tire-some spam and improve the overall security of your site. Our Geo-IP blocking software is able to block a single IP address or a country and uses a constantly updated database to blacklist known abusers. If your…

Read More

Away Mode – setting up away mode in WordPress

Away Mode. One of the ways we improve your WordPress security is to implement a service known as Away Mode. Using Away Mode we can setup a basic schedule to allow access to your WordPress Control Panel exclusively between specific times, for example between 09:00 and 18:00. Restricting the times that your control panel is…

Read More

404 Error, Probe & Attack Detection

When websites are actively being scanned for vulnerabilities by automatic scripts looking for weaknesses and known exploits, commonly a plephora of 404 errors are generated. We use this as an early warning of an attack as it is the electronic equivalent of the door being rattled or the lock being tested. When 404 errors breach…

Read More

Two Factor Authentication

When it come to WordPress security, two-factor authentication is one of the first, and best, things you can do to upgrade your website’s security. With major security breaches like the Heartbleed bug of 2014 that compromised the passwords of millions of users, passwords are becoming an increasingly risky way of allowing users access to the…

Read More

Protect Against File Changes & Suspicious File Change Detection

Affinity verifies the integrity of the Core files on your website along with the source code of the themes and plugins you have installed. Notifications are generated when any file has been added, removed or changed on a site, this gives early warning of suspicious activities or unauthorised changes. If your site has been hacked,…

Read More

Do We Need a Strong Password | Password Enforcement

Strong Password Enforcement We always encourage the use of strong passwords, the basic rules are to make sure they are unique, (not just one you use for all your online services). It follows sensible rules such as containing upper and lower case characters non-standard characters and is a minimum of 8 characters long, see our…

Read More

Captcha

We have all seen them on website logins and form submissions, Captcha is a simple but effective layer of security designed to protect websites by differentiating between humans (you & me) and Bots (Automated processes that trawl the web for various purposes). Some of those purposes are benign, (Google use them to build the index…

Read More

Block IP Addresses

Many attempted attacks are generated from outside of the UK. If your website is getting a lot of spam or attacks from a specific country or IP address, we can block that country, multiple countries or IP addresses using our specialised Geo-IP blocking software. This is useful. If you know that you are never going…

Read More

Auto Lockout of bad users – on too many log-in failures

We limit the number of times a user can attempt to enter a password, if the password is entered incorrectly more than 4 times in 10 minutes the system will automatically lock the account. By doing this we ensure that hackers are unable to guess or brute force your account password to gain access. This…

Read More