So here’s a a great example of why automating updates in WordPress is only smart for non-business websites. As I write this, one of the WP plugins published by Facebook just released an update with invalid code.
Not just a bug — code so wrong that it crashes sites. Code that wouldn’t have passed basic testing.
I’m sure “Facebook for WooCommerce” will be fixed promptly. However, over 900,000 online shops use it. If they were all running automatic updates, almost a million shops would be offline right now.
Other WordPress Update Problems
This comes on top of the GADWP fiasco earlier this year, too. In that, ExactMetrics changed the nature of their popular plugin without warning, through an “update”.
Version 6 of the “Google Analytics Dashboard for WP” plugin was “redesigned from the ground up”.… Read the rest
All businesses today should recognise the importance of having an effective cybersecurity policy in place. Data breaches seem to be constantly in the news. Whilst those tend to be high-profile cases like TalkTalk and British Airways, small businesses frequently suffer data breaches too. In recent years, Virtual Private Networks (“VPNs”) have become quite common for home use — so can a VPN improve small business cybersecurity?
Well, yes — but let’s cover the basics before examining the business benefits of a VPN.
What is a VPN?
A VPN is a private network (within the public internet) that enhances your online privacy by:
- Giving you a temporary IP address when you go online
- Encrypting data transfers between your computer and other online resources
- Wrapping that data inside other data to keep it even more private (called “tunneling” or “encapsulation”)
An IP address is the numeric address of your computer on the internet.… Read the rest
The new General Data Protection Regulation (GDPR) comes into force on May 25th 2018. It will affect every business and change many established business practices and business models. It will also require a fair bit of work to ensure compliance, so if you aren’t already working on that, you need to learn about this and start now.
I was going to do a lot of research and attempt to write something about how all businesses need to be ready for it. However, I’m not a lawyer, and giving bad advice could be risky. Also, there is no way that I could come up with something as clear or comprehensive as Heather Burns’ white paper on GDPR for Business Owners & Senior Executives.
If you have a business of any size, whether it’s online or not, or if you’re even just at the stage of considering setting up a business, you need to read that.… Read the rest
Meltdown & Spectre
So, 2018 has started with disclosure of two huge cybersecurity vulnerabilities, called “Meltdown” and “Spectre”. These are not like most of the “exploits” that hackers use. They affect almost all modern computers.
Sites like MeltdownAttack.com and Defiant.com (previously “WordFence”) have covered the tech details well. So, here’s a simplified summary of what non-techies need to know.
Why You Should Care About Meltdown & Spectre
Most vulnerabilities affect software. Meltdown and Spectre affect CPUs — the core computer chips — mostly those built by Intel since 1995. So they don’t just affect PCs, or Windows, or Macs, or Linux. They affect computers, regardless of what software or operating systems you use. In short — yes, this affects your computer(s) and phone(s).… Read the rest
“Trust me.” That’s the most vital message any website can convey. Without trust, visitors just leave.
However, most folks expect to be trusted, even when they’re wary about trusting others. Whilst that’s fine for dealing with folks in person, websites need to plan to build trust. We do that by providing quality content, good service — and “trust marks” like testimonials, “About” pages, Privacy Policies and other reassurances.
Of course, search engines want to promote quality, trustworthy sites, so many of these reassurances can be good for SEO, too. So online, trust doesn’t just enable sales — it actively increases sales.
…and Google just changed the game.
Google’s Great SSL Plan
So, as you may know, Google uses hundreds of signals to assess the quality and trustworthiness of websites.… Read the rest
“Malware” covers a huge range of threats including viruses, spyware, ransomware and more. So, anti-malware solutions must defend on several fronts. Many include anti-spam and firewall solutions too, as these block common malware sources.
Some operating systems are more secure than others, but nothing can be 100% secure. Malware is built to work around any predictable default protections. So, whilst it’s worth keeping built-in anti-malware up to date, you’ll need more.
Essential Anti-Malware Components
So, what features should you look for in your anti-malware solution? Well, there are five that no system should be without.
The most obvious requirement is an effective, up-to-date anti-virus system. These mainly handle:
- Viruses – which need human interaction to spread
- Worms – which self-replicate. These can take down an entire network of computers without much human involvement
- Trojans – which hide malware inside files and programs that look potentially useful
These classifications mostly refer to the delivery method.… Read the rest