Symantec believes businesses of all sizes need to consider their part in ensuring their website is safe for customers. Transferring malware or handing over a customer's financial data to a cyber criminal gang is no way to build repeat business. In fact, 61% of malicious sites are just regular websites that have been compromised in some way. Below is some great advice from Symantec on how to prevent the bad guys from ruining the holidays.
Symantec’s top 10 Tips for website security:
· Protect your customer's entire website visit by deploying SSL on all your web pages.
· Build customer trust with the green browser bar by using SSL Certificates with Extended Validation to secure public facing web servers and display recognized trust marks in highly visible locations on your website.
· Watch for attempted connections to known malicious or suspicious hosts from your servers. Implement physical security to protect your assets from theft.
· Use separate Test Signing and Release Signing infrastructures.
· Be sure to get your digital certificates from an established, trustworthy Certificate Authority who demonstrates excellent security practices.
· Scan your website daily for malware infection & regularly assess your website for vulnerabilities.
· Monitor your infrastructure for network intrusions, propagation attempts and other suspicious traffic patterns.
· Store your private keys in secure, tamper-proof, cryptographic hardware devices to protect the integrity of your digital certificates.
· Displaying a trust mark, such as the Norton Secured Seal, ensures shoppers that your website is verified, trusted, and likely free from malware.