Small businesses account for over 95% of all businesses in Australia and 72% of them have a website. However, in a world in which websites are increasingly being targeted by cybercriminals, only 36% check for updates every week. For those small businesses with a website, or that are considering one, these three quick wins will help you protect your money, data, and reputation.
Win #1
Hypertext Transfer Protocol Secure (HTTPS) is used to send data between a web browser (Chrome, Edge, Firefox or Safari) and a website. It uses encryption to increase the security and privacy of data transfers.
HTTPS also improves your Google search ranking – a reward for adding security. Soon, some web browsers will mark non-HTTPS websites as “not secure” in the URL bar, marking the URL red.
You might explore and set up HTTPS yourself via free and automatic options, such as Let’s Encrypt, or direct your website developer to our PROTECT publication Implementing Certificates, TLS and HTTPS guidance and ask them to set up HTTPS
Win#2
Update your website’s content management systems, plugins, and programs If you are using a web hosting provider, contact your provider to make sure they are keeping your content management system and any plugins up to date. They should also send email notifications detailing any website security issues.
Win#3
Secure your access to your website – multi-factor authentication and passphrases Ideally, your web hosting provider should offer multi-factor authentication to significantly increase the security of your access to a website. Using only strong passphrases for your server and website administration areas is an easy, quick win.
For more on creating secure passphrases, refer to the ACSC’s Small Business Cyber Security Guide.