Tuesday, November 12, 2013

Smaller sites have become more vulnerable to hackers because of DIY techniques

A blog posting by Dancho Danchev on the Webroot threat blog, Nov. 1, warns amateur webmasters that even their “small” sites with few users can become targets of cybercriminals and hackers in the “new world order” of DIY (do-it-yourself hacking tools), despite the widespread reports of hacks of banks and government agencies.  He also discusses a mysterious “Google dorks” concept. It sounds like a kind of trolling. 
The post is here.
Google recommends that webmasters routinely maintain industry-standard email addresses at their sites to see if anyone (like “Stop badware”) has reported the webmaster’s site to be infected.  Some of these usernames would be “info”, “webmaster”, “postmaster”, “abuse”, and the like.  The most important web page explaining all of this is here

One possible problem is that some web hosting services might not automatically provide these email addresses; the website owner may have to set them up.
Shared web hosting security does matter.   One problem common some years ago on Unix servers was leaving the “Site” command open to hackers. 

No comments: