I'm scared of hackers. What can I do to protect myself?

20 replies
Hey guys

I got a blog and it's going well.

The thing is, I often hear stories about how people were hacked or how someone tried to steal their domain.

No one has tried to hack me yet, but what are some precautions that I can take in order to protect myself so that when the time comes when someone does try I'm fine?

I'm not very tech savvy so I don't have a clue.

What precautions do you take?

What do you do when someone tries to hack you?

Any other advice when it comes to security?

How does a person that doesn't know much about the technical aspects of computers and that also doesn't know a lot about nameservers (what are those anyway?) and IP addresses protect themselves?

Or am I just paranoid? Maybe it's not as bad as it seems?
#advice #hackers #protect #scared #security
  • Profile picture of the author E. Brian Rose
    Back your site up frequently. There are plugins that will do it automatically or you can do it manually. If you are hosted on a cpanel, back your entire site up as well. Do it at least once a week. Also, eat lots of garlic. I hear hackers hate garlic.
    Signature

    Founder of JVZoo. All around good guy :)

    {{ DiscussionBoard.errors[2348325].message }}
    • Profile picture of the author eQuus
      Originally Posted by E. Brian Rose View Post

      Also, eat lots of garlic. I hear hackers hate garlic.
      What if the hacker is a garlic lover like me?
      {{ DiscussionBoard.errors[2348356].message }}
  • Profile picture of the author dvduval
    Backup everything often, and make sure your domain names are locked. Keep your passwords safe, and if you really are worried, get a Mac or a Linux computer where viruses are less common.
    Signature
    It is okay to contact me! I have been developing software since 1999, creating many popular products like phpLD.
    {{ DiscussionBoard.errors[2348328].message }}
    • Profile picture of the author Latsyrc
      I actually got hacked a couple of weeks ago. The hackers put obscene and vulgar language on my homepage. My husband had to take it down and fix strengthen my sites or whatever he did. It was NOT fun. I recommend you do everything you can to protect your site. I am not sure how he did it though, but I am sure you will get good advice here.
      {{ DiscussionBoard.errors[2348336].message }}
  • Profile picture of the author mikeink
    I was justed hacked and it took tech a day to get it back up. Needed to change user name and the password also. Used a good password of upper,lower case letters, numbers, and symbols. I recommend mimmium of 10 combination of these.
    Home page words are not mentionable here.
    Back up is very important it makes it easier to back up.
    Signature

    Well let me see. OH yea need to start work on my ???????? again.
    Been working for slave wages to long.

    {{ DiscussionBoard.errors[2348389].message }}
  • Profile picture of the author Jesus Perez
    It's all been said above.

    Backup often and keep your software updated.

    Never use "admin" for Wordpress administrator. Change it to something else.
    Signature

    {{ DiscussionBoard.errors[2348449].message }}
    • Profile picture of the author Dan C. Rinnert
      Also, make sure your own computer is secured. If they get a keylogger on your system and capture your passwords, they'll be able to get into your website no matter how well you have it secured.

      You have to consider all vectors of attack. Finding exploits on the website itself is one vector. The other vector is your own computer system. So make sure it is secure.
      Signature

      Dan's content is irregularly read by handfuls of people. Join the elite few by reading his blog: dcrBlogs.com, following him on Twitter: dcrTweets.com or reading his fiction: dcrWrites.com but NOT by Clicking Here!

      Dan also writes content for hire, but you can't afford him anyway.
      {{ DiscussionBoard.errors[2348459].message }}
  • Profile picture of the author Peter Olson
    Make sure your sites are up to date. Hackers have bots that just run through the web looking for older versions of wp/drupal/joomla/etc... and their plugins so they can use known security breaches on your site. Most of the time they won't ever need your admin user or password.

    Stop using FTP. Its just not secure. If you really need ftp, use sftp and use pass keys.
    {{ DiscussionBoard.errors[2348495].message }}
  • Profile picture of the author Thomas Smale
    Buy a gun.

    Also, lock your windows and doors
    Signature
    I specialize in selling websites over $10,000 in value. No obligation, confidential valuation here.
    {{ DiscussionBoard.errors[2348526].message }}
  • Profile picture of the author Paul Barrs
    [DELETED]
    {{ DiscussionBoard.errors[2348539].message }}
    • Profile picture of the author Victoralexon
      Thanks everyone for your replies.

      I will take the necessary precautions.
      {{ DiscussionBoard.errors[2348554].message }}
  • Profile picture of the author lacraiger
    aside from backing up and taking safety procedures, you shouldn't be too paranoid because hackers would need a reason to target you in the first place... and the chances of that are probably less than getting hit by lightning.

    unless you make alot of enemies online, i wouldnt worry about getting hacked.
    {{ DiscussionBoard.errors[2348632].message }}
    • Profile picture of the author Johnny
      Originally Posted by lacraiger View Post

      aside from backing up and taking safety procedures, you shouldn't be too paranoid because hackers would need a reason to target you in the first place... and the chances of that are probably less than getting hit by lightning.

      unless you make alot of enemies online, i wouldnt worry about getting hacked.
      Sometimes, hacker does not need a reason to do that
      Maybe just 'cos of fun.

      The first line of defence is to protect your own PC that is accessing the internet. The worst thing you want is all the password you are using are all captured from the machine you are using.

      Only use PC that you trusted to do online stuff. You never know what is the PC "health" status. If you use public PC, try to clear the cache and logout. It's common sense, but once I am in an airport, I happen to browse through someone yahoo email from the browser.

      Sometimes they target script engines version, so do upgrade to the latest possible version of the script you are using, eg Wordpress.

      For a start, just do backup regularly, just in case anything happen, you can recover from it.
      Shift your attention to your make money activities.
      What is the worst when your site get hack? Let's worry after you have start earning
      Signature

      ________________________________________

      >>> Johnny <<<

      {{ DiscussionBoard.errors[2348681].message }}
  • Profile picture of the author sirdonkeypunch
    My general career path is in Information Security/Network Security, and i follow the threats of the internet around on a daily basis. The thing is with blog software and most other simple site building software is when exploits are released hackers dont target just you. they target anyone who is exploitable and see what they can take.

    it doesnt matter if you think you have something they want or not, its a matter of not having your site secured. Bigger companies do a good job at providing updates when exploits/vulnerabilities are released, so you should do your best to keep any of your web app software updated just like you would/should keep your system updated on a regular basis.

    also it goes without saying that backing up your site (and dont forget backing up your SQL database/s) is strongly recommended as many people above have said. but by far the primary reason for sites being compromised is due to web app software not being kept up to date. you gotta really have some important information for hackers to actually target you, and run thru the motions of recon, enumeration, scanning, exploitation, and maintaining access on your site.

    the point im trying to make is you need to keep your blog software/forum software/web app software up to date, along with making regularly scheduled backups of BOTH the site content and the database
    {{ DiscussionBoard.errors[2348917].message }}
  • Profile picture of the author koncorps
    Garlic smells bad. I suggest you go with a stylish tinfoil hat, they are all the rage in Europe.




    But in all honesty, you're asking the wrong questions on a marketing forum IMHO.

    -Konstantin.
    Signature

    Signature appears.

    {{ DiscussionBoard.errors[2349134].message }}
  • Profile picture of the author derekwong28
    I just had an awful experience a few days back

    http://www.warriorforum.com/main-int...s-godaddy.html

    Looking back at how the whole episode unfolded, I am now pretty convinced that it was not a random attack. I think I was purposfully targeted by a person who I have dealt with before. The main suspect is actually one of my largest clients.

    Derek
    Signature

    Do not get between a wombat and a chocolate biscuit; you will regret it dearly!

    {{ DiscussionBoard.errors[2349220].message }}
  • Profile picture of the author williamkmohr
    best idea to avoid hackers is to use firewalls and to close the unused ports in system when you are using Internet
    {{ DiscussionBoard.errors[2349228].message }}
  • Profile picture of the author Hoopatang
    Don't forget offline attacks also - back when I had about 150 domains I used to receive snail mails weekly that looked like order forms or receipt forms confirming some action that had been taken with the domain. Unsuspecting newbies might respond to these by actually going to the site and trying to get the order stopped; which would have just ended up giving the company permission to transfer the domain onto their hosting, or into their name, or whatever. There were a bunch of different schemes they tried. If you get letters like these, shred 'em.
    {{ DiscussionBoard.errors[2349237].message }}
  • Profile picture of the author hendricius
    Make sure your server is from a reputed company and make sure your password is alpha-numeric, use the virtual keyboard for entering the password at all times and thats pretty much it. Hackers tend to target sites with an extremely large amount of traffic.
    Signature
    Follow me on Twitter: @hendricius
    {{ DiscussionBoard.errors[2350118].message }}
  • Profile picture of the author Victoralexon
    Thanks guys, a part of me doesn't understand how hackers can do these types of things to others.
    {{ DiscussionBoard.errors[2350120].message }}
    • Profile picture of the author suffolkman
      Hi,

      I have been hacked in the past,so I looked into want I could do.

      A site I came across was Expertwordpress.com. The guys on there hate Fantastico as a means of installing Wordpress. The reason being that it sets up everyones site to a standard install.

      They provide a means of manually installing Wordpress so you change standard table names,passwords, etc.

      Not to say that they hackers will not still get in, but at least if they struggle to get in to start with,they might go some where else where it is easier to hack.

      Peter
      Signature

      {{ DiscussionBoard.errors[2350921].message }}

Trending Topics