It is important to have a strong password for your website. Many attackers try to brute-force your login details. This means that they use a list of commonly used passwords, like your name, family name, car number, phone number etc.
When you installed an extension that you didn't like, don't set the extension to unpublished. If you do, the vulnerable files will still be on your website. So simply use the un-install function to totally get rid of the extension.
Never leave permissions for a file or directory set to 777. This allows everybody to write data (including exploits) to it. A wrong CHMOD may also allow access to the hackers.
We teach you best practice to secure your site by providing a in-depth audit, taken from within your site, highlighting hacks and backdoors to fix with our tools.
Take control of all your sites in one place, upgrade, audit, backup and much more. We provide a set of unique tools to make the job very simple and easy - for all your sites.
Never be caught without a backup! We make the backup process totally automated, built on proven Akeeba technology, we can backup your site daily, weekly or monthly even offsite.
Set up an unlimited number of monitors (near-realtime and every 5 mins) to check your site is online and working well, and that important files have not been modified or changed.
...Security is a moving target, so today's expert might be tomorrow's victim...
Turn on Search Engine Friendly URLs, as it will hide typical Joomla URLs.
Please feel free to ask for any support in Joomla Security or related issues. Our team will help you in resolving any issue or bug fixes.