We hate to break it to you, but if you’re wondering if your content management system (CMS) is being targeted by malicious hackers, you should know it probably is. 

In studies of online security breaches, it’s been discovered that the time to detect a breach within an organization is usually over 200 days. And when these breaches are detected? It’s usually by an external party, not the organization itself.

Are you considering making the jump to a cloud-based system for your business or e-commerce site?

Is your financial institution’s website or content platform stuck in the dark ages? It may be time to consider creating a new website using the tools that Drupal has to offer.  

--special thanks to the Engine Room Development Team for helping me with all this info!

If you run a website, ecommerce site, or marketing department you likely know what a Content Management Systems (CMS) is. CMSs are applications that help manage content by allowing multiple users to create, edit and publish web content.  Love/hate or indifferent about it, they are the Operating Systems for your website, and just like the operating system on your laptop or phone, they need constant care, like patching, security updates, and upgrades. I want to talk specifically about the security part today. 

It seems like just yesterday we were migrating all of our clients to Drupal 8 from Drupal 7. ‘Migrating’ is actually not the best word for it. It conjures images of a simple, turnkey step by step, perhaps even wizard-like interface that magically moves your site from the old to the new. Or, migration conjures images of graceful birds, steadfastly and instinctively making their way to their new surroundings. If anyone who went through this Drupal 7 to 8 journey knows, it was neither graceful nor wizard-like. So, knowing that all Drupal sites will need to be on Drupal 9 by either Nov. 2021 or Nov. 2022, can be scary.

Where to Start

Don’t know if your customers’ data is secure? Are you panicking that your website could be defaced, leading to reputation damage? We all worry about the risks that we face as website ‘owners’. That said, most attacks and incidents are well known and can be easily protected against. 

I’ll start with a quote by Jakob Nielsen, co-founder of the Nielsen Norman Group, pioneers in web usability.