My brain just imploded when I first read this.
Can you believe that Religious Websites Are More Dangerous Than Porn Sites?
It’s wrong on so many levels.
According to the Symantec Internet Security Threat Report (2011), religious/ideological websites are three times more likely, on average, to be infected with malware than porn sites.
Why?
We hypothesize that this is because pornographic website owners already make money from the internet and, as a result, have a vested interest in keeping their sites malware-free – it’s not good for repeat business.
So, it would seem that pornographers put a little more thought into their web presence than churches do. Granted, adults sites generate revenue, so it’s just good business sense to keep the porn sites free of malware.
But aren’t churches supposed to be active extensions of Christ’s Kingdom, working to bring others into a loving relationship with Him?
Shouldn’t our web presence be a reflection of His amazing presence within us?
Whatever happened to “whatever you do, do it all for the glory of God”? (1 Corinthians 10:31)
Better than Porn
Can we admit that if we preach that marital sex is holy and better than porn then our websites ought to be better than porn sites?
Good.
Now, how do we go about this?
1. Stay Current
Keep your website up-to-date, including all scripts, plug-ins, passwords, etc. Yet, more than the site, keep yourself updated on new threats and vulnerabilities.
2. Be Realistic
Don’t assume that it can’t happen to you. Every site is a target. Even yours.
3. Backup
Backup your site frequently. That way, if the worst does happen, you can go scorched earth on your server and restore from a previous, healthy version.
4. Trust the Pros
If you’re not confident about your abilities to secure your site, there are many professional options available. In fact, your site’s host might already offer a free or cheap backup service.
5. Scan It
Finally, scan your church website. It’s free and easy!
Is malware something that we might just have to accept on church sites?
Is malware this millennium’s crappy animated GIF cross?
[via Relevant Magazine and Symantec | Image via Eugene Zemlyanskiy]
Sam says
Thanks for calling this out Phil, I was shocked too when I read that report. All too often application security takes back seat for organizations without dedicated security budgets/resources and this is an easy foothold for the enemy (in all forms).
I’m interested to know whether there are other IT Security specialists out there with recommendations on vulnerability assessment tools that non-profit organizations could use. Although it’s a great recommendation that people scan their sites with tools like VirusTotal, it won’t catch some of the underlying vulnerabilities that attackers exploited in the first place allowing them to upload nasties. Better still, anyone know of any faith-based whitehat hacker groups who offer their services pro-bono?
Phil Schneider says
I think it would be sweet to have some “faith-based hackers.” Epic idea! Maybe 8Bit needs to branch out? Great comment, Sam.
Stephen Peterson says
Comodo provides a free virus scanning service for websites. They scan the website everyday and send a report by email after each scan. We use this service as a precautionary measure for our church website.
Stephen Peterson says
We are also planning on integrating CloudFlare soon. I’ve used the service for another website, and it works quite well.
Phil Schneider says
Excellent plan of attack, Stephen. Way to be prepared. Awesome!