Hackers have been known to disrupt services, erase information and distribute information. Website defacement is another thing that some hackers do.
What is Website Defacement?
Samples of website defacement hacks
- Anonymous PH hacks gov’t websites
- Comelec website hacked a month before polls
- US Army website defaced, then brought down
How to prevent website defacement
A lot can be done to prevent or at least limit website defacement on your business and/or personal websites.
- Update your website software regularly – If you are using a open-source software for your website, make sure that you update it regularly. Most open-source software releases security updates on a regular basis.
- Secure your database from SQL Injection – Make sure that there are no vulnerabilities when accessing data. This is very common issue when developers don’t use proper ways of escaping SQL statements.
- Check DNS Blacklist database for known IPs
- Limit Error messages. Giving out too much information can be disastrous
- Use SSL
- Use both Server and client side validation on forms – Make sure that you also use server side validation. Having only client-side validation makes your website vulnerable specially when users turn off browser scripts.
- Secure File and directory permissions – Make sure that files and directories that shouldn’t be updated do not have write permissions.
Hopefully, these will help you to protect your websites from website defacement.
Here are a few services from companies that I have researched to help you with prevention and detection