How To Secure Your Website From Hackers

The book I read to research this post was How To Secure Your Website From Hackers by Ashish Ghanti which is a very good book which I bought from kindle. This book is about the various techniques hackers can use to damage your website but even more importantly how they can gain access to passwords and financial information via your website. The latter is the priority with most hackers and they will mostly not damage your website as such and try to hide their tracks and not get caught. Your website for a start must always require passwords before doing any functions and must require the exact URL. Many hackers don't know the exact URL and it's amazing how many this will trip up. Often they will do HTTP injecting where they enter the known part of the URL and an extension they think will take them to a part of the website that maybe is a database or stores credit card info. Another very frequent method is social engineering and another similar one is phishing where they try and get an employee to part with the password. You need to educate your staff to prevent this and in thinks like emails look at the language carefully and study the links. What this book doesn't say but is the case is nowadays they can use a genuine link that seems okay when you hover over it with the mouse but which uploads software onto your computer like malware and you best bet is enter the address manually into the address box. Ashish is from Nepal and is a blogger and SEO consultant. I think this book is well written although one problem is I think it says hacker not hackers in the title and I suppose English isn't his first language. The information on securing your website is good although the book is somewhat short. It does suggest using open source tools Nessus and Nmap to test the integrity of your site and I think I learned quite a lot from it. There is obviously a lot of information in the book I've not covered. I've just included it a taster. I think I recommend it.