Signing in to your website is the first thing you do before performing any administrative task. Signing into a site may seem like an easy and irrelevant task, but there are certain precautions you should take when signing into your site to preserve security.
Don’t get Phished
Website security starts the moment you sign into your site to administer it. Check the domain name you are signing into. A common tactic that hackers use is they will send you an email containing a link to use to sign in to a service. The service may appear to be your own site, but in fact it is their malicious website.
When you sign in to what looks like your own website, they store your username and password and use it to hack your real website. This technique is called ‘phishing’.
A way to avoid being ‘phished’ is to ensure that when you sign in to a site, you check the domain name in your web browser location bar to make sure it is your own website.
Try to only use HTTPS
Using a secure connection is an important part of website security. Before you sign in, check your browser location bar to make sure that your site starts with ‘https://’ and is green (in most browsers). It may also have a lock icon indicating it is a secure page. Signing in via HTTPS ensures that your login information is sent encrypted across the Network and that someone listening in can’t steal your username and password.
Many WordPress sites don’t use HTTPS and if yours is one of those, contact your site administrator and ask them to upgrade you to HTTPS. This will usually involve purchasing an HTTPS certificate from a Certificate Authority. They cost anywhere from free to over $ 900 dollars depending on what kind of certificate you buy and who you purchase it from.
We are Freelance Web Designer, driven to get your company better results online. You get strategy, design, development & marketing all under one roof.