In the vast realm of the internet, where websites and email communication reign supreme, the Domain Name System (DNS) serves as the unsung hero. DNS records are the invisible architects that translate human-readable domain names into machine-readable IP addresses, facilitating the seamless operation of websites and email services. In this article, we will embark on a journey to unravel the intricacies of DNS records and their crucial role in making the digital world accessible.
-
Demystifying DNS Records: The Backbone of Websites and Email
-
Small Business SEO Checklist
How many of these statements resonate with you?
- Your website is getting minimal traffic.
- The conversion rate has a lot of room for improvement.
- Your website doesn’t show up in search results, even if your keywords are used.
- Your website isn’t responsive.
- You haven’t secured your website with HTTPs.
- Your site has a poor user experience.
- You site isn’t ranking like your competition.
If even a few of these statements sound familiar, then it may be time to secure the services of a competent Search Engine Optimization (SEO) team. But how do you know who to hire? With just a quick web search, a myriad of consults show up- all claiming to take your website to the first page of results.
-
9 Ways to Get the Most Out of Your Marketing Budget
Sticker shock has, unfortunately, become the norm. It seems no matter where you go, prices are going up. Consequently, budgets at both home and work are being stretched like an out of shape rubber band. However, when it comes to the business world the old adage is still true, “You have to spend money to make money”.
If you are looking for ways to boost your business, cutting out marketing expenses is not the answer. After all, how can you build your business’ bottom line if people don’t know who you are or what you have to offer?
-
13 Tips to Perform Smooth Website Migrations
Has your current website or domain outgrown its original purpose? Maybe, you have made -or need to make- some significant changes to your branding or want to change your URL but don’t want to rewrite content or redesign anything. If this sounds familiar, or maybe you are just considering a change, then a website migration may be the perfect solution.
By definition, a website migration is “the process of making significant feature changes to a website that can affect its online visibility.” (Online Marketing Guru) This process plays an important part in how your website will then be viewed and can affect your site’s Search Engine Ranking and marketing efforts. These effects can be quite disastrous if the site migration is not done correctly. As such, it is recommended that if considering a website migration, you work with a professional who will implement all the steps involved for success.
-
11 Techniques to Improve Your Website’s Search Engine Ranking
Perhaps you recently redesigned and rewrote your website. Will your site suddenly shoot to the top of a web search? While the redesign may certainly benefit your company, that doesn’t guarantee you will be boosting your web presence. Rather, there are many ways to improve your standing in search engine ranking.
Even if you are just setting up your first company website, you know being in the top spot(s) is important. However, you must remember that ranking better is relative. After all, moving from page 6 to page 3 is still an improvement.
If you have looked at your first quarter numbers, and want to do more, then there’s no time like the present. We have a long list of action items from which to choose. But before you begin, take a few minutes to decide what you wish to accomplish, how much time or money you have to invest, and how much knowledge you have of search engine optimization (SEO). Once you narrow down these answers, you are ready to get started.
-
How To Choose a Secure Password
Last month we talked about using a password tool, so you only have to keep up with one password. And while remembering a single password is great, it is important that password is a strong one that no human or AI technology can guess. And, while you may be using a password tool to store your info, it’s key that you use a different password for each service to limit your security exposure.
So, what consideration do you need to have before choosing a password? After all, they are the first line of protection against your private information and no one- be it a large corporation or a single individual- is safe from being hacked or dealing with a data breach. Everyone is at risk of being a cyber victim, so choosing a good password is a must!
-
The Benefits and Dangers of Using a Password Manager
Open Sesame! As a child, perhaps you had a fort, tree house, or maybe just your bedroom where you required others to use a password to enter. It was a fun way to control who entered your space. However, in today’s society, passwords are such a common thing that they have, perhaps, become a necessary nuisance. And, for many people, the statement(s) they dislike seeing/hearing are “What is your password” or “create a password”.
After all, creating a password means coming up with a series of letters, numbers and characters that are unique to you and a particular account. But beyond the creation of the password, becomes the need to remember said passwords. Considering the experts now say a password should be a minimum of 16 digits, keeping up with several passwords can seem like a job in itself- never mind the tasks associated with many logins! Thankfully, there is a way to make keeping up with passwords easier.
However, despite the ease of use a password manager offers, surprisingly few people actually use one. In fact, a Consumer Reports survey found that only 39% of people use a password manager! Despite the low percentage of people using them, this in no way means they are not needed.
-
Protect Your WordPress Website: Don’t Get Hit by GoTrim
As long as there have been websites, there have been hackers and malware whose sole purpose is to gain access to a website and wreak havoc. As such, it is crucial that as a business owner, you do your part to protect your company website from those entities with malicious intent. However, even in taking steps to protect your website, there is still malware that can cause a significant amount of trouble. For instance, the recent GoTrim botnet malware has been causing problems since this Fall.
GoTrim, is attacking self-hosted WordPress websites and then uses brute force practices to obtain the administrator’s password to take over the website. The bot is designed to work in 2 modes – “client” and “server”. It works by using a bot network to scan a site and attempt to brute-force the admin accounts by using stored credentials. If it gains access, GoTrim then spreads to the command and control server (C2). The bot then uses PHP scripts from a hardcoded URL to delete the script and the brute-forcing component from the infiltrated system. When successful, the bot reports credentials to the C2 server. GoTrim is designed to steal credit card information, making it a threat to you and your clientele.
It should be noted that the GoTrim requests for access are sent to C2 every few minutes. If, after 100 tries and not getting a response, the bot will then automatically self-terminate. This is because the goal of the bot is to evade detection- which is why the primary targets are self-hosted websites as many WordPress users do not employ proper security practices. However, if the bot is successful in getting through then the following information can be accessed by GoTrim:
- Target URL
- Username
- Password
- Command ID (1 for WordPress, 3 for OpenCart, as well as several others)
- Brute force status (“0Good”)
In studying how the GoTrim bot affects sites, it has been found that while WordPress CMS sites are the most affected since they make up 40% of the market share, other targets include self-hosted Joomla!, OpenCart, and DataLife Engine. In addition, GoTrim is also capable of bypassing some anti-bot techniques used by host providers. It is designed to copy legitimate requests from Mozilla and even supporting content encoding algorithms like gzip and Brotli, while also detecting what CAPTCHA plugins are being used. Of special import is that so far, GoTrim cannot override Google, WP Limit Login Attempts and Shield Security’s CAPTCHAs.
What to Do About Malware
So, now that you are aware of GoTrim, and perhaps others, you may be wondering what you can do to protect your website. Fortunately, there are several proactive measures you can implement.
- Set up a two-factor authorization (also known as a 2FA) – This is the most common step to take and the one recommended by Page Progressive and many other website pros. Two-factor authorization is required on bank, government sites, military sites, and many others where the proper level of security is common. However, due to so many hackers, identity thieves, etc. out there lurking around for sit e access 2FA has become common for many other types of sites. A tool we recommend is Wordfence.
- Be sure your site is set up as an HTTPS – If you have not updated your site to be an HTTPS, then you are more susceptible to being attacked by malware. If your site is HTTPS compliant then not only will the URL begin with HTTPS but there will be a green lock symbol with the word “secured” in the URL. This lets your customers know that you have taken proactive measure to protect their financial information. Making this change will also help your Google search ranking- so it’s a win for everyone!
- Use a CDN (Content Delivery System) – A Content Delivery System uses a separate system to keep malware and viruses away from the backend of your website.
Have firewalls in place – A firewall restricts traffic to and from your website, and only allows trusted guests to enter. A firewall also protects against dangerous SQL (structured query language) statements and cross-site scripts that could shut down your site.- Always Backup Your Information – Don’t loose vital information because of a hardware failure (or worse, a cyber-attack) and not have anything backed up. While no one wants to think about the aftermath of being hacked or hit with a malware attack such as GoTrim, you can’t ignore the risk! Be sure to run scheduled backups- ideally daily. Talk to your web host provider to set this proactive measure in place.
- Implement services such as SiteLock, Cloudflareand Sucuri – These services use good bots to automatically block the bad ones. They are designed to eliminate backdoor breakthroughs, keep your plugins and website’s core components updated and mitigate malicious use of CAPTCHA.
Keep in mind that bots can be quite powerful, and they will cause a significant damage. As such, they should not be ignored. After all, when it comes to protecting your website, it is up to you to do your part. Take advantage of the various proactive measures available to protect your website, as well as the information- yours and your guests-that is stored there.
If you are unsure if you have taken the necessary measure to protect your website, now is the time to make updates. The Page Progressive team is well-versed in implementing security measures and tactics to protect your website from GoTrim and other bots. Give us a call today to schedule a consultation and learn how we can help you protect your website.
Have firewalls in place – A firewall restricts traffic to and from your website, and only allows trusted guests to enter. A firewall also protects against dangerous SQL (structured query language) statements and cross-site scripts that could shut down your site.