by Mark | May 25, 2018 | Content Management Systems, Web Security
Today’s article is from our member Julia Eudy. Julia – Many thanks for writing this article and providing your insights.
When I think of the industry of web design, I think of the many talented people responsible for populating the internet with information over the past couple of decades. But our job is never done! From continual refinement of responsive design, to developing content worthy of Google’s latest search strategy; our jobs as designers and web managers is an ever-evolving landscape. In today’s market it is essential to stay current with technology and the threats targeting those we serve and those who search online. Without constant awareness and action by our peers in technology, cybercriminals will continue to challenge our time, patience, and livelihood.
Websites have become Key Point of Attack for Cybercriminals
While many believe that email phishing is a key entry point for most cyber criminals, it has become apparent that they are often using an unsuspecting website to hide their activity of malware designed collect valid emails and launch other criminal schemes. While some argue that nothing is hack-proof; content management systems built on open-source code have enabled the unsecure environment we now reside. It goes without saying that sharing code saves time; but is it worth the longer-term cost?
Let’s explore the leading CMS platform, WordPress. It is an easy-to-use interface making it popular among novice developers and DIY professionals, but it is often a prime target of hackers who specifically build robotic scripts designed to quickly search through the openly published source files looking for vulnerabilities. Technical web designers (those who know how to customize the code and apply advanced security settings) understand that keeping current on updates and effectively managing a recovery plan for the sites you have created has become a time-consuming task and one that is raising the overall cost of website management. However, the millions without some technical skillset, have likely already become an unsuspecting victim to one of the many ongoing threats facing the WordPress community.
A prime example of how open-source code created a breeding ground for a cyberattack happened in early 2017 when one of 20 hacking groups launched a digital turf war on WordPress by discovering a flaw found in their REST API script. A wide-spread attack impacted roughly 1.5 million pages of WordPress sites1 across 39,000 unique domains in a matter of days as reported by security plugin developers WordFence and Sucuri. Keep in mind that only 1.5 million of the 24 billion pages running WordPress2 are protected by these firewall applications.
Insurance Companies are Looking at Who to Blame for the Increase in Commercial Claims
From the outside looking in, the internet landscape is under attack, but who is to blame? This is a question many insurance companies are beginning to ask3 as their costs to cover cyber-attacks on commercial policies continue to rise.
Looking at a big picture, here are some general facts to consider…
- According to the Small Business Administration, there are approximately 28 million small businesses in America which account for approximately 54% of all sales in the country. 4
- In a 2017 report by Kaspersky Lab, the average cost for a data breach against a small and medium-sized business in North America was $117,000.5
- An article published in 2017 by INC Magazine, referenced a presentation made at the NASDAQ by Michael Kaiser, the Executive Director of the National Cyber Security Alliance, who stressed concerns about the attack on Small Business and that such attacks are expected to continually rise because of their (the small business professional’s) lack of awareness of the pending risks.6
- A 2016 study performed by Ponemon Institute LLC and Keeper Security revealed that the number one type of cyber attack targeting small and medium sized businesses was through a web-based attack with the web server being the most vulnerable entry point.7
- That same study by Ponemon Instutute cited “negligent employees or contractors” as the root cause of the data breach. 7
So, I ask you, when the Insurance companies follow the facts, who do you think they will turn to recover their loss?
- Will it be the random person who pointed out their vulnerability by successfully holding their web presence ransom? – likely not. That person is too difficult for them to track.
- Will they blame the contractor who their customer hired to create their website? – Yes!
In recent conversations I’ve had with insurance professionals, one question asked was, “Should web designers have an ethical obligation to inform an untechnical customer of the risks involved with having a website?” As a technology professional, I agreed that they should and most likely do, but it is often the customer who elects to not add to their expenses for proper technical support. Their reply – “Ok, show me the proof and we go back to our customer!”
Most web managers are aware that being hack-proof is near impossible to achieve; however, as web professionals we are hopefully more aware and have taken necessary precautions to defend our livelihood. Contracts, authorized “opt-out” forms proving we’ve informed the customer of the risks, and building trusted relationships with supporting contractors are just a few first places to start; but having our own policies to cover mistakes and cyber threats should also be considered.
Like our other certifications, we are exploring resources necessary to develop a comprehensive training and security certification to help web developers stay current with different types cyber threats that they may encounter. This certification would identify specific areas that are being targeted and give the opportunity for continued training opportunities to learn more or improve your skills in specific areas. This certification would also classify you as a Cyber Certified Web Professional which will identify to those seeking a web services provider that you have participated in training that is designed to reduce their web-based risks.
If you are interested in learning more about this certification and the time schedule for training and certification release, please contact us and let us know your thoughts.
CITATIONS:
- 1.5 million pages of WordPress sites
- 24 billion pages running WordPress
- Insurance
- Kaspersky Lab
- INC Magazine Article
- Ponemon Institute/Keeper Security Study
Author Bio
Julia Eudy is a Technology Consultant with specialties in Online Marketing, Web Design and Cyber Security. She teaches Content Management Systems (WordPress) and Social Media Marketing at St. Charles Community College in Cottleville, MO, in addition to managing a small Online Marketing firm (Golden Services Group) that focuses on online marketing solutions for small-medium sized businesses. Additionally, she is working with a group of professionals to create a training program designed to inspire K-12 students to pursue careers in technology and cyber security.
by Harshala | May 18, 2018 | Industry News, Web Content
The Web continues to evolve. Recent projections indicate that virtual reality and augmented reality may soon become a major part of web interfaces. We thought it might be helpful to provide a quick overview of these technologies and provide additional resources about the potential impact on the web. As an aspiring or practicing professional, you should be aware of these technologies.
What is Virtual Reality?
Virtual Reality is the computer-generated simulation of a three-dimensional image or environment that can be interacted with in a seemingly real or physical way by a person using special electronic equipment, such as a helmet with a screen inside or gloves fitted with sensors.
Current VR technology most commonly uses virtual reality headsets or multi-projected environments, sometimes in combination with physical environments or props, to generate realistic images, sounds and other sensations that simulate a user’s physical presence in a virtual or imaginary environment. This Wikipedia article has detailed information about the technology and its applications.
What is Augmented Reality?
Augmented reality (AR) is a direct or indirect live view of a physical, real-world environment whose elements are “augmented” by computer-generated perceptual information, ideally across multiple sensory modalities, including visual, auditory, haptic, somatosensory, and olfactory. The overlaid sensory information can be constructive or destructive and is spatially registered with the physical world such that it is perceived as an immersive aspect of the real environment. In this way, augmented reality alters one’s current perception of a real world environment, whereas virtual reality replaces the real world environment with a simulated one. Augmented Reality is related to two largely synonymous terms: mixed reality and computer-mediated reality. You can find more information about this at this Wikipedia article.
(more…)
by Harshala | May 11, 2018 | Web Development, Web Professional Trends
Web Development Trends
In web development, the saying “the only constant is change” is very true. Web development is changing every second and 2018 is no exception. User expectations are growing and it is more important than ever to build digital experiences that are engaging, fun, and intuitive. Content needs to be accessible everywhere especially on mobile devices. In order to make that happen, new programming languages and frameworks are on the rise, extensions are becoming more compatible, and real time web apps are becoming more popular.
Web Development Trends You Can Expect in 2018
(more…)
by Harshala | Apr 27, 2018 | Social Media
Content Marketing Strategy
Social media allows brands to tell stories and connect with customers on a deeper and more intimate level. In addition, brands can use social media to regularly engage users and drive them to their content hubs, or toward higher-value actions, like visiting a product page, downloading a gated asset, or purchasing an item. We thought it would be helpful to review social media trends for 2018.
When leveraging new social features, content marketers must not lose sight of the ultimate goal of content marketing: to tell exceptional stories that drive people toward positive business results. Here are three major social media trends to watch out for in 2018 and what content marketers can do to stay ahead of the game.
Social Media Trends in 2018
We think web professionals should review this article where 29 experts express their thoughts about social media trends in 2018.
(more…)
by Harshala | Apr 20, 2018 | Web Administration
What is Server Administration?
Server Administration is advanced computer networking that includes server installation and configuration, server roles, storage, Active Directory and Group Policy, file, print, and web services, remote access, virtualization, application servers, troubleshooting, performance, and reliability. We thought it might be helpful to review the basics (particularly for aspiring web professionals).
What is a Web Server?
Web server is a computer where the web content is stored. Basically, a web server is used to host the web sites but there exists other web servers also such as gaming, storage, FTP, email etc.
(more…)
by Harshala | Apr 13, 2018 | JavaScript
What is JavaScript Framework?
A JavaScript framework is an application framework written in JavaScript. It differs from a JavaScript library in its control flow: a library offers functions to be called by its parent code, whereas a framework defines the entire application design. A developer does not call a framework; instead it is the framework that will call and use the code in some particular way. Some JavaScript frameworks follow the model–view–controller paradigm designed to segregate a web application into orthogonal units to improve code quality and maintainability.
Here is the link for the popular Wiki article.
(more…)
by Harshala | Apr 6, 2018 | Web Project Management
What is a Project?
A project is temporary in that it has a defined beginning and end in time, and therefore defined scope and resources. And a project is unique in that it is not a routine operation, but a specific set of operations designed to accomplish a singular goal. So a project team often includes people who don’t usually work together – sometimes from different organizations and across multiple geographies.
What is Project Management?
Project management, then, is the application of knowledge, skills, tools, and techniques to project activities to meet the project requirements.
(more…)
by Mark | Mar 30, 2018 | Web Design, Web Development
As members (and many readers) likely know, Web Professionals runs a national web design contest every year. This year will be our 15th year. For the past decade, we have recorded the technology used by individual team members to create their web pages. As one may expect a number of different editors are used. Each team has their preferred editor. For most of this time, we noticed Dreamweaver as the premiere editing tool being used by high school students and post-secondary students. This morphed in recent years to many using Sublime Text, Atom, or Brackets. We also saw an uptick in the use of Adobe Muse. We recognize many practicing professionals use a variety of tools. We also saw this week that Adobe announced the end of feature updates for their Muse product. We then heard from a number of teachers that they are concerned about the demise of Muse (many teach design students, not those specializing in web technologies). Frankly, we were surprised that so many have come to rely on Muse as an entry to creating web pages. We also have seen Adobe Spark being used. Editor’s note (August 19, 2022) Adobe Spark is now Adobe Express.
We recognize there is a disconnect between what is being taught in schools and what practicing professionals need to know. We see this first hand every year in the comments from judges in our web design competition. As one may suspect, we focus on web standards, process, and user experience (and don’t promote any specific editor). We do see trends and were surprised to see Muse being used in the competition for a couple of years.
This got us thinking about editors in general for web pages. We would like feedback from those visiting this page. What is your preferred editor for web pages? We have included a list of some editors which we have seen being used in our national competition (along with a few others we use). It would be most helpful if you took a moment and voted as to your preferred editor. If you don’t see it on the list, please let us know via comments. We set this poll to display these editors in a random order (trying not to influence the results).
Loading ...
Of course, this brings up the bigger question of what should be taught in schools (particularly high schools). We have been promoting web standards and user experience, not specific tools. Does this still make sense? We are keen to learn your thoughts and look forward to a number of insights and comments.
Best always,
Mark DuBois
Executive Director and Community Evangelist
by Harshala | Mar 23, 2018 | Industry News
Consumers expect to use products and services from anywhere – and often on the go. Connected devices are no longer only phones, laptops, wearables’, smart coffee machines, or even talking fridges. We’re stepping further with smart houses, connected city infrastructure, intelligent assistants, and highly automated vehicles.
Consumer Electronic Show (CES) of 2018 have brought consumers the greatest hype around automation, connectivity, and augmented reality we could only dare to perceive.
New technology trends in 2018
- Autonomous technology is turning delivery services upside down
- Drones are playing the piano and could be doing much more
- Augmented reality builds trust between drivers and driverless cars
- Intelligent home assistants. Alexa, Siri and Google – a war that hasn’t even begun
- Voices, voices everywhere. Infrastructure and cars are really talking
The automotive industry is gaining a new role as a hub that helps businesses in various fields transform their products and services into on-the-go solutions and adapt to the future mobile-first and autonomous-first world. We can read this article to know more about latest trends in technology.
(more…)
by Harshala | Mar 16, 2018 | ECommerce
What is eCommerce?
Given some recent questions we have received, we thought it was time for a review of the fundamentals of eCommerce for aspiring web professionals.
Electronic commerce or eCommerce is a term for any type of business, or commercial transaction. It involves the transfer of information across the Internet. It covers a range of different types of businesses, from consumer based retail sites, through auction or music sites, to business exchanges trading goods and services between corporations. It is currently one of the most important aspects of the Internet to emerge.
This eCommerce article provides information about selling online products and also about how to develop an eCommerce strategy.
eCommerce Basics
To review the basics, one should read this article written by Ajeet Khurana an author, educator, mentor, angel investor, and speaker for eCommerce and online business.
(more…)
