Google’s strongest security, do you need it?

Do you want the reassurance of knowing your Google account is properly secured? Have you had your Google account compromised before and never want to have to go through that mess again?

Previously we have written articles on important steps for all Google users (this means anyone that has a Gmail or GSuite account). Here are the most important ones:

If you don’t have 2FA (two factor authentication) enabled yet, you should probably do that first and then come back and read on. Sadly, only 10% of Google users have enabled 2FA  although it has been available for over 7 years and is dead simple to use. Don’t be in that 10%!

Google has recently released an even stronger form of authentication utilizing a physical device instead of a 2 factor code you receive via SMS or an app on your device. This may not be for everyone, but if you want the strongest protection for your Google account make sure you read all about it on their site here: Google Advanced Protection Program

So in review, if you don’t have 2FA enabled yet, you should that now. If you want even stronger protection, maybe this new Google device is for you.

Don’t wait until it’s too late before securing your online accounts.

Why you should listen to Google and get a green padlock

With the release of Google Chrome v62 in October 2017 all websites that have a “contact us” form will be marked by Google as Not Secure unless they are using SSL/https

Instead of a warning from Google, you want your visitors to see that your website and any information they provide you is secure.

You can read more about this change in the article Google have provided here:

We want to help you

We can enable SSL for you at no cost (in most cases), however you do need to contact us to request this. Check out our previous post Do you SSL/HTTPS? You should. Find out why

If you are concerned with security and performance, have you seen our Cloud Server offerings? We also offer free domain WHOIS privacy on all supported domain extensions.

Contact us today so we can help to keep you and your customers secure.

Just because it says: Secure..

We all know that the internet is filled with plenty of bad guys trying to steal our money. So, imagine this scenario: You click a link in an email that appears to be legitimate and as the webpage loads in your browser you see the green word “secure” light up. Does this mean it’s safe to login to this site?

No. Why? The green padlock or the word “secure” does show your connection to the site is secure but it doesn’t mean the site is legitimate. It may be a site setup simply to steal your credentials. Read what Google says about these secure indicators here.

How do you know if it’s really safe? Here are 3 things to take note of:

1. Don’t rely on links in emails or other webpages to go to a login page, it could be fake. Instead, type the address into your browser or use a bookmark you setup yourself.

2. Examine carefully the website address of the page you are visiting. Just because it contains, for example, the word ‘PayPal’ doesn’t mean you are on the official PayPal website.

3. Use good security habits to avoid being caught. If, for example, you have 2FA (See – Why do I need 2FA?) enabled on your internet accounts, even if your login is stolen, the bad guys still will not be able to login to your account.

We want you to be safe so have written extensively on this subject. Please review these articles:

Do you SSL/HTTPS? You should. Find out why

Has your password been stolen?
Overwhelmed with passwords?

4 Reasons you need your own Cloud Server

1. Security

Like it or not, security is something everyone needs to give more attention to than they probably do. With standard web hosting, your files usually reside on a shared server along with other websites. If another website on the server is compromised your own website could be at risk.

Having us setup a Cloud Server for you will ensure your website has the highest level of security. For other tips on keeping your website working, please see: 3 Ways to keep your website working

2. Performance

How many times have you left a website because it was too slow to load? You want your website to load quickly when prospective customers visit.

Along with security, the performance of your website could be affected by other users on the same server. Having your own Cloud server means that your website(s) will be the only sites using your server resources. This means faster load  times.

Google also takes into account the speed of your site when doing it’s search engine rankings. We are able to locate your Google Cloud Server in a location closest to your customers. For example, if most of your customers are located in Australia, we would create your Google Cloud Server in Australia

3. Simple fast setup

We’re here to fully manage the setup of your very own Cloud Server. We recommend a Google Cloud Server (yes, actually from Google), but we can setup and manage your own Cloud Server with the provider of your choice (Amazon, DigitalOcean, Linode etc)

We will setup tools to ensure your server is always up to date and secured. We will provide you or your developer with a login to the server via Secure Shell (SSH/SFTP).

4. Cost effective

A fully managed Cloud Server starts from only $45 per month. We will work with you during setup to ensure we provide you the best server configuration to suit your needs.

Contact us today to find out more, or signup now and we’ll get your server setup asap.

Some of the technical details are:

Nginx as a transparent proxy, apache, multiple versions of php, MySQL databases. Unlimited site hosting (host as many of your own websites on your Cloud Server as you like).

Free Joomla updating service now available

XYZulu are pleased to announce a new FREE service available to any of our customers. We are now offering, at no extra charge, to keep your Joomla site as well as any installed components and plugins up to date for you.

This means that when a new Joomla security update is released we will automatically update your site for you. We’re offering this for FREE! Why should you keep your website up to date and secure? See the following post for more details: 3-ways-to-keep-your-website-working

How do I get this free service?

Simply open a ticket with us and we’ll make it happen.

We look forward to serving you even better in 2017.

3 Ways to keep your website working

internet2Imagine you have had a great new website developed. What can you do to ensure it stays up and running, is not compromised/hacked and continues to keep showing up in Google and other search engines?

Here are 3 simple tips:

1. Keep software and components/plugins up to date

Your website most likely runs on some software, perhaps Joomla, WordPress or something similar. This software is only secure if it is kept up to date. You’ll find keeping your website software up to date fairly simple these days. Simply login to the administration section and update any components that are out of date.

This will possibly reduce the likelihood of your website being compromised by 95% or more.

2. Enable SSL/HTTPS

We have written about this before, but some of our valued clients are still not sure how important it is. Unless your website is running via SSL/HTTPS (green padlock in the browser when you visit) you are at risk of being penalised by search engines. Read more about this here: Do you SSL/HTTPS? You should. Find out why

3. Host with XYZulu Web Hosting

At XYZulu Web Hosting we run up to date server software and even allow you to choose, for example, the version of php you want to run. See more on this here: Does your web host offer multiple versions of php?

The server that hosts your website needs to be kept up to date. Failure to do this could be similar to rarely updating your own computer software which will greatly increase the risk of having information stolen, or worse still, your computer being hijacked and used to attack others.

Don’t take the risk

While you may not give internet and website security the highest priority, taking these 3 simple steps will GREATLY reduce the risk of your website being compromised and/or losing credibility with your own customers.

We are here to help and are ready to answer your questions related to website security, please leave your comments below.

2 Factor Authentication now available for all our clients

2faXYZulu take security very seriously and we want you to do same. We are pleased to announce that 2 factor authentication (2FA) is now available to all our valued clients.

To activate two factor authentication, please visit our support article: Enabling two factor authentication (2FA) for your XYZulu Customer Portal login

What is 2FA?

Please read this post: Why do I need 2FA?

Another security essential is using a password manager. Please be sure to read this post: Overwhelmed with passwords?

Let us help you to stay safe online!