How to Mitigate, Restore and Monitor a CMS Site Under Phishing or Hacked?

Mitigating the Site

Step #1: Make sure you always use a clean and protected computer to login to the server (malicious cookies, keylodgers, spayware and viruses can snick to the server and feed vital information to the attacker )

Step #2: Backup the database

Step #3: Regular cleaning and optimizing database

Step #4: Change the password to stronger passwords both for database, cpanel and CMS

Step #5: Update all extensions and templatesand deleted unwanted ones or the scripts with no updated over six months

Step #6: Secure and prevent editing of php script, web directories and important files like htaccess and configuration files

Step #7: Change login URLs, administrator usernames, database names and usernames to access database plus changing the table prefix to the harder ones

Restoring the site

Step #8: Deleted manually all foreign folders, files suspected for phishing, any useless scripts plus old site backups as those may create loophole to attack the website

Step #9: Remove core folders and related core files in root folder except folder for data configuration and htaccess files

Step #10: Upload fresh and current copy of the deleted CMS folder and files

Monitoring the Site

Step #11: Install security monitoring and notification systems

Step #12: Make sure your website is visited and scanned regularly for malware (at least once per week) using https://sitecheck.sucuri.net

Social Media Marketing for SEO

Social media offer natural visit, clicks and other engagements to the website and hence increase reputation to Search engines especially Google. A website marketing or SEO plan that does not include social media is invalid and website marketer are strongly advised to put a number one priority to website marketing via social media.

Our social media marketing package covers 7 popular social media namely Facebook, Twitter, Instagram, Google plus, Google my business, Linkedin and Youtube)

Our obligations includes:

  1. Create social media accounts if not available
  2. Brand the account profiles
  3. Put relevant content
  4. Establish networks of not less than 3,0000 in Facebook, LinkedIn and Instagram,
  5. Create auto sharing according to individual media rules
  6. Perform manual sharing whenever auto sharing fails
  7. Create engagement functions both in the profile and in the website (engagement functions can be contact us, voice call for mobile, booking and or subscribe for latest news and offers)
  • Duration = 90 days
  • Fee = TZS. 750,000/=

Website Management – Web Mastering Training

  • What is website management
  • Why Website Management
  • Customer Need Analysis – Know what the client need to be managed
  • Create a Work Schedule
  • Control panel audit (examining the control panel to know if it is fit for website management )
  • Website general audit, SEO, security, reputation and technological compliance
  • Performing website management according to audit
  • Basic website configuration from the control panel
  • Configuring the core and related scripts – WordPress
  • Theme Configuration to be SEO friendly – WordPress theme configuration
  • Update page title, description, content to be SEO friendly
  • Optimize the website for SEO
  • Secure/harden the website
  • Wrapping up and handing over the project
  • Create traffic and security monitoring systems
    1. Create configure Google analytic
    2. Create configure webmaster tools
    3. Create and configure Cloud-flare for website optimization
    4. Create and configure uptimerobot for web site monitoring
    5. Install and configure JetPark  plugin
    6. Install and configure WordFence plugin
  • Wrapping up and handing over the project

Website Security or Hardening Training

Website security program include:

  1. Introduction
  2. Types of Website Attacks and Vulnerabilities
  3. History of Website Attack
  4. Performing Customer Need Analysis – Know what the client need for web security
  5. Create a Work Schedule
  6. Control panel audit (examining the control panel to know if it is fit for website security)
  7. Website Security Audit
  8. Performing website security according to audit results
  9. cpanel configuration for security which include, ssl installation, modsecurity enabling,
  10. htacess file optimization for security codes
  11. SPF configuration
  12. Create configure webmaster tools
  13. Create and configure Cloud-flare for website optimization
  14. Create and configure uptimerobot for web site monitoring
  15. Install and configuring AKISMET plugin
  16. Install and configure JetPark  plugin
  17. Install and configure WordFence plugin
  18. Wrapping up and handing over the project

Web Designing Training

The training established to focus on young and emerging website designers and website owners. It covers the following areas:

  • INTRODUCTION (History, technologies and challenges)
  • BASIC HTML
  • HTML EDITORS
  • DESIGN PROCEDURES (ONSITE WORK)
    1. Need analysis
    2. Project design and planning
    3. Performing web design according to design and planning
    4. Cpanel account audit (examining the cpanel if it is fit for website hosting on question)
    5. Basic cpanel account configuration for website uploading
    6. Installing and configuring the core and related scripts – WordPress
    7. Theme/template design/Configuration – WordPress theme configuration
    8. Create new SEO friendly pages
    9. Add SEO friendly text, images/video and links
    10. Remove unwanted pages, text, links and or images/video
    11. Optimize WordPress
    12. Secure WordPress
    13. Project testing and troubleshooting
    14. Project Wrap up
    15. Website uploading if design is done offline
  • WRAPPING UP AND HANDING OVER THE PROJECT