Do you have Unwanted Website Traffic?

All sites are regularly attacked by hackers , spambots, spammers….
Using Google Analytics we can break down visitors to IP, Location, City  and we often find unwanted visitors from various parts of the world. The greatest numbers of attacks we are seeing currently are coming from Russia, China and India (not exclusively).

So what’s the impact?

Spammers create unwanted comments on your blogs, you can try blocking IP’s to prevent the same person spamming , but often harden spammers create new IP’s to prevent blocking.
Hackers will add x-scripting code, try logins, DDos attacks and more. They check for vulnerabilities and will try until they find a weakness to gain entry to your website.
A Spambot  is an automated computer program designed to assist in the sending of spam. Spambots usually create fake accounts and send spam using them, although in many cases it would be obvious that a Spambot is sending it. This has led to the development of password-cracking Spambots that are able to send spam using other people’s accounts. They  affect bounce rates and damages SEO results.

Can I stop them?

In short no. Not without locking your site down so tightly that you limit your audience to only people you know.

What can I do to limit these attacks?

One answer we have found is to block traffic from a whole Country. If we have no plans to deal with companies in Russia or China in fact we only want to promote ourselves in English speaking Countries and Europe. So if  we block all traffic from all other Countries it will reduce the potential of unwanted traffic and therefore lessen the risk and damage of a hack, and dramatically improve your bounce rate and automatically improve your search rankings results.

How can I achieve this?

M3 Strategic Marketing offer a solution that will not only help prevent unwanted attacks from specified Countries, but will ensure your bounce rate is reduced, meaning Google will see your website as being more relevant and will no doubt show the site for search more, thus helping your SEO Positioning too. The Wordfence Premium plugin enables you to block visits by Country, and is something we can download, configure and implement on your behalf based on your specific needs.
If you need help understanding your Google Analytics, or would like to discuss adding Wordfence premium to your WordPress website, please contact us.

During a routine audit, we found a critical vulnerability affecting the popular MainWP Child WordPress plugin. According to worpdress.org, it is installed on more than 90,000 WordPress sites as as remote administration tool.
This vulnerability allows anyone to login as an administrator only by knowing the target user’s handle, which is a password bypass. It is very simple to exploit and because security tools like WPScan already automate the process of grabbing a list of usernames from WordPress sites, it’s a big issue.
Clients using our Website Firewall are already protected against this issue.
Contact us for further information about this low cost security protection for your website. For  less than the price of a cup of coffee per working day, can you afford to be without Website Firewall?
 

Malware and hacking is a real threat – with 87% of small businesses hit by denial-of-service attacks in the last year.

(source http://www.pwc.co.uk/assets/pdf/cyber-security-2013-technical-report.pdf)

Make sure you use the following 7 preventative measures:
1. Change your FTP (or SSH) password regularly.
2. Change your administrator password.
3. Check in your admin panel if there are additional admin users and change their passwords as well.
4. Remove any admin access that is not necessary.
5. Run regular virus scans on your personal desktop/laptop.
6. Update your website! One of the leading causes of infections is outdated software.
7. Backup your site!

We copy your website and database on a regular basis and host it away from your server. The copies (the latest 3 are kept) are stored on our secured server and also on a cloud based platform with secured and limited access.
Access can be given to your team, your hosting provider and also your website developer. Because the copies are on the cloud, they are available 24/7.
This means that no matter what, your website can be recovered.
In some cases, it is so imperative that a site remains live, that it may be wise to host a mirrored version of your site for almost instant accessibility.
We just need FTP access or in some instances, admin access – a full audit of your website will be assessed before we take your order!
Call us now on 01604 328899 to discuss the options available to you.