Security, Speed and SEO


© Dedmazay | Dreamstime.comSecurity Guard Photo

Imagine if your site was hacked:

 

Google will notify users or may drop your site from the search results. If visitors happen to reach your website anyway, Google Chrome may also present a warning message like this:

This of course creates a negative feeling about your website and would make users weary about ever coming back to it.

Google may send an email through Google Webmaster tools to the users on the site saying:

“Google has detected that your site has been hacked by a third party who created malicious content on some of your pages. This critical issue utilizes your site’s reputation to show potential visitors unexpected or harmful content on your site or in search results. It also lowers the quality of results for Google Search users. Therefore, we have applied a manual action to your site that will warn users of hacked content when your site appears in search results. To remove this warning, clean up the hacked content, and file a reconsideration request. After we determine that your site no longer has hacked content, we will remove this manual action.”

But you may not be alerted, and your site could be hacked for a while without notice.

Even if you run a malware scan in your site, you may not know what to do about the results:

There are a plethora of hackers from all over the world trying to hack into websites to use them for various purposes, whether to practice their skill, to send a message, for backlinks, spam, the website’s resources as a bot, or just to boost their reputation in the underworld:

This is a screenshot from a defaced website, which I helped fix. I was surprised to learn that Iran is a first-tier cyber threat. The U.S. seems to have woken them up and got into a cyber security war after using the Stuxnet virus back in 2010 to go after their nuclear energy plants. Even the FBI now warns of ISIS/ISIL cyber-security attacks against WordPress sites targeting out-dated plugins: http://www.zdnet.com/article/fbi-expect-isis-hacks-if-you-dont-patch-wordpress-plugins/

Several website disasters happened at the start of this year that woke me up to the need for enhanced website security:

  • Iran Cyber Security defaced a client’s website
  • A previous U.S. developer of a client who was fired, deleted the home page and changed an admin password of his website
  • Indian developers had CPanel access to get FTP access and supposedly when a developer logged in, all of the website files were all gone
  • Other Indian developers claimed that someone else had access to the site they were working on and were messing with the files, and then suddenly one day, all of the work they had done was gone
  • Several websites that other developers had made performance issues
  • A server was overloaded with backup files
  • Brute force attacks (password guessing) from IP addresses in Ukraine, Italy, and more…

You can see it’s not just one IP address, but hackers will rotate IP addresses (hence why blocking one IP address is not a full-proof measure), and will come from unexpected countries, possibly through a proxy server from another country (such as a hacker in Iran using an anonymous proxy server in Italy). Blocking countries is a better strategy…

I never expected any of these problems to come up before. While I jumped in and fixed them to help my clients, it’s VERY time consuming and costly to the client if the proper systems aren’t in place in the first place. Hosting companies say “Customers are responsible for their own backups and web content and should make their own backups for extra protection.” One client paid $80 to GoDaddy to restore a database backup (that took them 10 minutes to restore) and over $100 to me for assistance in restoring the files, website and adding security measures to prevent it from happening again.

Instead of having websites be completely obliterated unexpectedly and panicking to restore them at a high-cost, I thought why not create a secure system that prevents these disasters from happening in the first place and provides everyone peace of mind? After all your website is your online business, without it, your cash flow will take a hit too.

I put together the most strategically thoughtful, comprehensive and low-cost packages I could to offer to entrepreneurs and small business owners to prevent website disasters, improve speed and SEO. These packages build up from essential backups to ensure business continuity, to basic security and speed enhancements, to advanced security and speed enhancements, and finally to advanced on-site Google SEO enhancements.

Of course I recommend having all of these features for your website, as every website needs them. The lower price points are so that at least website owners can afford something rather than nothing for their website, but eventually through security alerts, and desire to improve speed and SEO, I expect everybody will want to be on the top-most full-featured package.

Presenting, your new security, speed and SEO package options:

Essentials
$9.99
per month per URL
  • If all of the files on your server are deleted or they have a virus, only a remote backup would be able to restore your site. For this, we trust Google’s servers.
    Monthly Backups
  • Updates are often pushed out for security reasons, therefore it’s a good idea to automatically update WordPress, themes and plugins, especially when you have an automated backup system too.
    Monthly Updates
  • Even if a U.S. hacker (or someone you gave admin access to) gets into your website and changes admin passwords, which has happened before, I can still get you back in through centralized website management. I’ll also be able to track down who the offender was through security logs, which has been useful before.
    Lockout Protection
  • Comment spam is prevalent amongst WordPress websites since comments are enabled by default and automated systems take advantage of them for money. A comment spam prevention system can be enabled to protect your site.
    NO Comment Spam Protection
  • Security hardening is about taking preventative measures to thwart hackers, such as adding a firewall, removing the common “admin” user name, filesystem security, and brute-force prevention.
    NO Security Hardening
  • Your website will have the speed it comes with, un-optimized for file size and the number of server requests. This may cause visitors to get frustrated with your site and leave. A slow site also hurts Google SEO.
    NO Speed Improvement
  • MOST websites are the target of automated hacking attempts from overseas (Russia, China, Iran, Bulgaria, Ukraine, etc). A security plugin will be added to your site so you get email notifications of when overseas hackers try to get into your site. If your site is a target, then you should upgrade to the Security package.
    NO Hacker
    Protection
  • Cross-Site Scripting (XSS) accounted for roughly 84% of all website security vulnerabilities documented by Symantec as of 2007.
    NO Cross-Site
    Scripting Block
  • Your website will serve files from wherever the servers are located, despite visitors being in other cities too. This creates unnecessary delays in waiting for your website to load.
    NO Content Delivery Network
  • Google can’t index sites that are down.
    NO Uptime
    Monitoring
  • Google won’t index sites with malware.
    NO Malware
    Scanning
  • Google will scan your site for broken links and report it.
    NO Broken Link
    Checker
  • Google will monitor incoming search traffic to identify optimization opportunities.
    NO Search
    Optimization
  • $24.99 Setup Fee
Basics
$19.99
per month per URL
  • If all of the files on your server are deleted or they have a virus, only a remote backup would be able to restore your site. For this, we trust Google’s servers.
    Fortnightly Backups
  • Updates are often pushed out for security reasons, therefore it’s a good idea to automatically update WordPress, themes and plugins, especially when you have an automated backup system too.
    Monthly Updates
  • Even if a U.S. hacker (or someone you gave admin access to) gets into your website and changes admin passwords, which has happened before, I can still get you back in through centralized website management. I’ll also be able to track down who the offender was through security logs, which has been useful before.
    Lockout Protection
  • Comment spam is prevalent amongst WordPress websites since comments are enabled by default and automated systems take advantage of them for money. A comment spam prevention system can be enabled to protect your site.
    Comment Spam Protection
  • Security hardening is about taking preventative measures to thwart hackers, such as adding a firewall, removing the common “admin” user name, filesystem security, and brute-force prevention.
    Basic Security Hardening
  • Your website will be optimized for basic speed improvements such as a reduced file size and reduced number of requests, which won’t affect how your site looks or works, simply speeds it up by around 50%, which also helps SEO.
    Basic Speed Improvement
  • MOST websites are the target of automated hacking attempts from overseas (Russia, China, Iran, Bulgaria, Ukraine, etc). A security plugin will be added to your site so you get email notifications of when overseas hackers try to get into your site. If your site is a target, then you should upgrade to the Security package.
    NO Hacker
    Protection
  • Cross-Site Scripting (XSS) accounted for roughly 84% of all website security vulnerabilities documented by Symantec as of 2007.
    NO Cross-Site
    Scripting Block
  • Your website will serve files from wherever the servers are located, despite visitors being in other cities too. This creates unnecessary delays in waiting for your website to load.
    NO Content Delivery Network
  • Google can’t index sites that are down.
    NO Uptime
    Monitoring
  • Google won’t index sites with malware.
    NO Malware
    Scanning
  • Google will scan your site for broken links and report it.
    NO Broken Link
    Checker
  • Google will monitor incoming search traffic to identify optimization opportunities.
    NO Search
    Optimization
  • $49.99 Setup Fee
Advanced
$29.99
per month per URL
  • If all of the files on your server are deleted or they have a virus, only a remote backup would be able to restore your site. For this, we trust Google’s servers.
    Weekly Backups
  • Updates are often pushed out for security reasons, therefore it’s a good idea to automatically update WordPress, themes and plugins, especially when you have an automated backup system too.
    Monthly Updates
  • Even if a U.S. hacker (or someone you gave access to) gets into your website and changes admin passwords, which has happened before, I can still get you back in through centralized website management. I’ll also be able to track down who the offender was through security logs, which has been useful before.
    Lockout Protection
  • Comment spam is prevalent amongst WordPress websites since comments are enabled by default and automated systems take advantage of them for money. A comment spam prevention system can be enabled to protect your site.
    Comment Spam Protection
  • Security hardening is about taking preventative measures to thwart hackers, such as adding a firewall, removing the common “admin” user name, filesystem security, and brute-force prevention.
    Basic Security Hardening
  • Your website will be optimized for basic speed improvements such as a reduced file size and reduced number of requests, which won’t affect how your site looks or works, simply speeds it up by around 50%, which also helps SEO.
    Basic Speed Improvement
  • Overseas hackers and bots from Russia, China, Iran, Bulgaria, Ukraine, etc try daily to break into websites. By routing traffic through a country IP detection system, those overseas hackers can be blocked from automatically accessing and attacking your website.
    Foreign Hackers
    Blocked
  • Cross-Site Scripting (XSS) accounted for roughly 84% of all website security vulnerabilities documented by Symantec as of 2007.
    Cross-Site Scripting
    Blocked
  • Content will be pushed to servers in multiple cities so when a visitor visits your site, files will be served from the closest city, resulting in faster page load times, improved visitor satisfaction and longer visits.
    Content Delivery Network (CDN)
  • Google can’t index sites that are down.
    NO Uptime
    Monitoring
  • Google won’t index sites with malware.
    NO Malware
    Scanning
  • Google will scan your site for broken links and report it.
    NO Broken Link
    Checker
  • Google will monitor incoming search traffic to identify optimization opportunities.
    NO Search
    Optimization
  • $74.99 Setup Fee
Advanced SEO
$39.99
per month per URL
most popular
  • If all of the files on your server are deleted or they have a virus, only a remote backup would be able to restore your site. For this, we trust Google’s servers.
    Daily Backups
  • Updates are often pushed out for security reasons, therefore it’s a good idea to automatically update WordPress, themes and plugins, especially when you have an automated backup system too.
    Monthly Updates
  • Even if a U.S. hacker (or someone you gave access to) gets into your website and changes admin passwords, which has happened before, I can still get you back in through centralized website management. I’ll also be able to track down who the offender was through security logs, which has been useful before.
    Lockout Protection
  • Comment spam is prevalent amongst WordPress websites since comments are enabled by default and automated systems take advantage of them for money. A comment spam prevention system can be enabled to protect your site.
    Comment Spam Protection
  • Security hardening is about taking preventative measures to thwart hackers, such as adding a firewall, removing the common “admin” user name, filesystem security, and brute-force prevention.
    Basic Security Hardening
  • Your website will be optimized for basic speed improvements such as a reduced file size and reduced number of requests, which won’t affect how your site looks or works, simply speeds it up by around 50%, which also helps SEO.
    Basic Speed Improvement
  • Overseas hackers and bots from Russia, China, Iran, Bulgaria, Ukraine, etc try daily to break into websites. By routing traffic through a country IP detection system, those overseas hackers can be blocked from automatically accessing and attacking your website.
    Foreign Hackers
    Blocked
  • Cross-Site Scripting (XSS) accounted for roughly 84% of all website security vulnerabilities documented by Symantec as of 2007.
    Cross-Site Scripting
    Blocked
  • Content will be pushed to servers in multiple cities so when a visitor visits your site, files will be served from the closest city, resulting in faster page load times, improved visitor satisfaction and longer visits.
    Content Delivery Network (CDN)
  • Google can’t index sites that are down.
    Uptime
    Monitoring
  • Google won’t index sites with malware.
    Malware
    Scanning
  • Google will scan your site for broken links and report it.
    Broken Link
    Checker
  • Google will monitor incoming search traffic to identify optimization opportunities.
    Search
    Optimization
  • $99.99 Setup Fee
Do you have questions or concerns? Contact us to discuss.
Terms and Conditions
These packages are provided as a low-cost automated solution. Any manual intervention after the set up is complete, such as to restore backups, are a separate charge.
The security measures provided greatly enhances security protection from known-threats, however it is not a guarantee of complete protection, assumption of liability for any successful hack or an up-time guarantee. What it is, is affordable and valuable security like having your own virtual security guards, loss-prevention measures, and security cameras.
The SEO provided covers on-site SEO; off-site SEO is generally needed as well to generate backlinks with keyword anchor text to help rank webpages on page one of Google.
You can unsubscribe at anytime by canceling your subscription within PayPal or emailing me to cancel it. Though if your website is still live, I don’t recommend canceling your subscription and exposing your website to all of the evolving security threats.