Website security has become a priority for businesses. If not long ago the attacks seemed real, it is not the same today. Simple actions are to prevent access to social networks from the company’s e-mail box, to reflect upstream on the choice of passwords, to raise awareness of the company’s employees, to adopt appropriate behavior. Pay attention to some tips that will help you avoid pitfalls
Secure website with HTTPS
Switching to a secure HTTPS connection is almost mandatory if you don’t want to lose a good chunk of your traffic before an Internet user even enters your site. Most browsers warn you about connections to HTTP sites and mark them as “unsecured”. This type of protection makes it possible to guarantee your Internet users on the management of their personal data, which is highly appreciated by search engines. This type of connection ensures that if he sends you his bank details, they cannot be disclosed or intercepted by a third party.
More than 1,900 cyber security vulnerabilities in 2023
The Insurers Coalition believes that CVEs will continue to rise in 2023. Thus there will be 1,900 common vulnerabilities and risks (known as CVEs) which include 270 high-severity defects and 155 equally critical defects. With a 13% increase compared to 2022, these predictions show that cyber attacks are not going to stop. To arrive at these figures, the insurer relied on a combination of 10 years of analysis of underwriting and claims data, web analytics, its global network and more than 5.2 billion IP addresses. They also looked at 22,000 cyberattacks to better understand the techniques used. It is to be noted that 94% of the companies scanned last year “At least one unencrypted service was exposed to the Internet “. The vulnerability mainly comes from older protocols such as the Remote Desktop Protocol (RDP) as well as some databases that have high rates of compromise.
Enforce GDPR obligations
The GDPR provides protection for Internet users and to achieve this goal, it imposes obligations on companies. Among these, it applies to inform your customers about their rights of access, rectification, opposition and deletion of the information that you have collected or will collect from you. It also obliges companies to ensure the security of information systems. On the one hand, you will need to ensure the confidentiality of the data and on the other hand indicate the retention period for the data.