Hackers, how do they get in to your website and hosting account? In today’s wild web, it just seems like sometimes you can’t keep hackers out!
Here’s what happened recently to me. I set up a new hosting account at a quality hosting service (not GoDaddy). The same day I loaded the site files, the site was hacked. Files were loaded and links to malware installed in newly created pages that mirrored my own site pages but with a .shtml instead of .html.
The host told me that all was secure and although the site was in a shared hosting environment that their network was not where the hack came in.
The only thing that I can possibly think of that caused the problem for this non-WordPress site is I emailed the passwords to the client. What the client did with the logins, I do not know. I am not sure if he even tried to login, but doubt it.
The host said that possibly a hacker got into the site via a field in the contact form, but there is a Captcha and tests for validity of information and on top of that no database connection for the form. I am mystified!
What I do know is that sometimes you just do not know how hackers get in, could they tunnel in from the host? Could they intercept logins by email? Could they be trawling the web for new hosting set ups and attack them? Your guess is as good as mine.
One thing I do know is that there is a new hack for WordPress websites that targets new hosting accounts where WordPress installation has not been completed. There are bots that are scanning the web for these new sites and coming in via WordPress setup files and taking control of hosting. Could this type of attack possibly be what I experienced? It is possible.
What I do know if that prompt action to clean up, wipe the server, and change all passwords for hosting and FTP and also no longer emailing logins is our newest protocol.
Your website is all about more sales! That’s the reason you’ve hung out your shingle, but are you hurting leads and sales by having a website that’s not polished enough?
Polish is not about having fashion models in your content photos, although attractive people in your pics will not hurt, it is about the details.
These details communicate visually your professionalism and instill confidence in prospects when they visit. It’s the look and feel and you’ve got 10 seconds to make a favorable impression!
Here are my top polish points to check out on your own site.
Content blocks on the home page
These just must be the same word count and line up horizontally. When you have three different sized boxes it just looks bad.
Blog post excerpts in your footer
Control the word count! There are plugins you can use to assure your excerpt stays the same word count. Make sure to use them so you do not have giant blocks of blog content making the bottom of your website page look like jagged teeth.
Photos with no smiles
Staff photos where everyone looks grim or the business owner is frowning should be updated. Look approachable, you don’t have to be a model, but a pleasant look on your face is important.
Photos where the clothing is too casual
Owner and staff photos are important. If you work in a professional arena like a dentist or doctor – wear a white coat, lawyers – wear a suit, business owners – the higher dollar figure your sale, the more dressed up you should be. Polo shirts and super casual wear is great for your photo if your customers and competitors will be wearing those types of clothes. Careful – what you wear impacts your site’s polish and communicates professionalism.
Blog posts that are off topic that don’t match what you sell
If you blog yourself for your own website, make sure that you create and stick to a content strategy that works to build keyword density and authority for your website. Keep the your website’s polish going by being on topic. Blogging is not your online journal, but rather a way to build authority with search engines and provide new fodder for search engine robots.
Many legacy website owners are now looking at upgrading their websites to leverage new technologies but what type of site should you consider as you weigh your options?
WordPress Websites Pros and Cons
I have a love/hate relationship with WordPress. I love the power and adaptability. I love the free plugins, but I hate the security problems and I hate the lack of really fine control both for SEO use and for image placements.
If a client decides that they want to do their own content updates, WordPress is perfect for them, but at a cost.
If a client does not buy a security monitoring service like WordFence or SiteLock, they may leave their expensive new website open to becoming hacked and banned on Google (until remediated from a hack).
Being secure costs money and WordPress is not a set it and forget it application. Be prepared if you decide to do your own updates that you need security software and need to do your own weekly site updates to keep WordPress secure.
HTML Websites Pros and Cons
For clients that are never going to do their own updates and do not need special plugin features from WordPress, I love a regular HTML version website. I love the control of page and image naming, the ability to have total control over site architecture, and the security of knowing that hackers do not typically use HTML websites as a platform to spew spam or malware.
HTML websites do not need regular security review, analysis and monitoring as WordPress sites do. But as technology changes they typically should be replaced about every five years.
If you need help with a SEO focused information-rich website for your service business and are not using ecommerce, pick up the phone and chat with me about your needs at 540-693-0385. I’d be glad to let you candidly know if our services would be a good match for your needs.
Googlespeak can be confusing for those not in the industry, so this post will help business owners understand what Google means when it states the following:
“To make our results more useful, we’ve begun experiments to make our index mobile-first.” Doantam Phan, Google product manager
This is the bottom-line. Google is testing and will most likely rollout a huge change to its indexing algorithm that is used to rack and stack websites in the organic or unpaid results of search pages.
The algorithm will now review and base the ranking index across all devices based on what the Googlebot spider reads in the content of a mobile version website. This is incredibly big news and the ramifications are huge.
If you have a responsive website, you do not need to worry. You are totally covered for this update.
2. If you have a mobile adaptive website, you need to start making changes. A mobile adaptive site means that the content for your mobile site is different and sometimes lacks the content that you have in your desktop and tablet version site. You may have dropped content, streamlined content on pages, or not developed content for some pages. In other words the mobile site is different by design and desire from your desktop site.
3. If you do not have a mobile site it is time to get busy and move to a responsive website design. Although Google says that it will still spider your site with its mobile searchbot, I would expect in the future to see tags in the index stating your site is not mobile friendly and possible demotions.
Google means business on mobile as attested by the following quote.
“Although our search index will continue to be a single index of websites and apps, our algorithms will eventually primarily use the mobile version of a site’s content to rank pages from that site, to understand structured data, and to show snippets from those pages in our results.” Doantam Phan, Google product manager
If you need help with a responsive website, now’s the time to check in with the McCord Web Services team. Our focus is to implement affordable, SEO-focused responsive websites that bring you customers.