Malware and viruses on websites are a currency of the day. With increasing frequency sites infected with malicious code are. Most infections sometimes cause loss of web positioning, blocking in browsers, loss of reputation against different ISPs email (Hotmail, Gmail, etc.) and above all time while we deal with the situation.
These are just some of the effects that can be generated as a result of having malware on our website. So today we will share with you 7 steps or practices to prevent virus infections and malware on websites.
7 steps to prevent malware and viruses on your websites
There are many factors that can trigger an infection. In fact long ago we published a post that dealt in abasic way when we show up blocked by Google to level browsers: Google malicious site blocking me: what do I do?
Today we will try to explore the main reasons to take preventive action to avoid infections.
1) Strong Passwords: although we repeat since we can remember, ignore users to use strong passwords and in some cases are infections prior to cracking weak passwords. A strong password must be 8 characters minimum, and include uppercase, lowercase, numbers and symbols. This rule is very important to prevent malware and applies to all types of area that requires a user name and password, whether email, cPanel, FTP, access to a website, WordPress, etc.
2) Scan local network and PCs: make frequent scans the network and PCs from where they are kept and connect to the websites it is essential. Often local networks are infected with viruses, Trojans, etc. and these websites are automatically uploaded while the user works with not very secure protocols such as FTP for example. To prevent malware on your web recalls also prevent your computer and local network.
3) Pirated software: the previous point also occurs very often if pirated software is used, cracked by any third party that injects malicious code into the software in addition to free him and make “free” information from the PC, connections and uses They are made. Sometimes it is better to pay a few dollars for a good software, legitimate, incurring unnecessary risks.
4) writeable: if you need to write to a file or directory through a script with permissions using 755 should be enough, should not be used permissions 777. In Infranetworking in all our plans Shared Hosting (Virtual, multidomain, WordPress, Joomla), and 99% of Dedicated Servers and Cloud VPS run suPHP , a technology that allows safe use permits (755), if you are our customer using 755 should be sufficient to write PHP without violating your site.
5) Update software: to prevent malware should keep CMS (Joomla, WordPress, Drupal, etc.) updated, as well as their plugins / components and themes. To better exemplify: 90% of infections are caused by WordPress running very old versions of this popular content management. With Joomla happens almost equal, it is absolutely necessary to keep them always updated, not just the software itself, but also all plugins and themes.
6) Using Antivirus: Locally, they must use a good antivirus and / or security suite that includes full anti spyware, keyloggers, malware, etc. In Windows you can use Karspersky, Symantec and AVG antivirus on Mac you have Avira, AVG or MacKeeper. And if you run Linux there are options like ClamAV, CXS or Maldetect.
7) Operating system: another measure to prevent malware is to avoid using Windows locally. Today at desktop level remains the most vulnerable to attacks, partly as designed, and partly operating system because it has a large market share, and it is logical that one of the preferred platforms to deliver all types of virus and malware.
If you can switch to Linux, where you will have a much safer, better platform but another alternative would be to use Mac, which has a base of Unix and also makes it less prone to viruses and malware compared to Windows.
What do I do if my site is infected?
1) In case of being infected by malware or viruses, they can use these tools to get more information on infection:
- Online Link Scan
You should inspect the files and see the same code. If your site run WordPress plugins there are several that can help you:
- Sucuri WordPress Security
- Anti-Malware and Brute-Force Security by ELI
Note: If you have a plan or Cloud Shared Hosting / Dedicated with contracted Administration can scan the code of your website for malware or viruses, our technicians will help instantly.
2) After cleaning the site ideally StopBadware ask Google or do a site review to avoid any blocking in browsers, here is more information:
As we could see, malware infections and viruses on websites can have terrible consequences for the SEO, user experience and potential customers. Updating the software and use correct permissions are the main weapons to combat the virus, although infections infected local networks and weak passwords are another common cause.
Follow these 7 steps to prevent malware and viruses and we are sure you’ll have a much more secure and reliable web, for the eyes of Uncle Google, and for your audience.