Malware, spam, hackers and security breaches are a 24/7 security concern. By default our hosting provides security to keep you safe against harmful web attacks. All of our hosting packages come with free SSL certificates, malware scanning, are PCI-DSS compliant, include 1 Tbps+ DDoS protection as well as brute force login protection and email scans plus much more.
The tools we provide help you to save time, money and protect your sites. All security tools & services are included in all hosting packages. We will never charge you for these - you shouldn't have to pay for website security.
SSL/TLS certificates are now an important part of secure web browsing, as well as any connections by FTP or Email. Legal regulations and promotion by Google have made it essential that every site should have one. We partner with Let’s Encrypt to provide every site we host with a free SSL certificate.
All of our free SSLs are 'wildcard' certificates to ensure that you can secure sub-domains as well as your primary domain using one certificate. To ensure that you can get a free 'https' certificate your site needs to use the Cloud Next name servers. Our free SSL certificates provide the same level of encryption and security as a paid for SSL certificate.
We scan all sites on our WordPress, Linux and Managed VPS platforms on all packages every day for common malware. Using commercial and custom tools, we scan and alert you to known malware signatures contained in files. Malware can compromise your site, giving criminals access to your site’s data, email and content.
We give you a detailed report on the results of this scan in our your Account Control Panel and for each individual site.
Any business that processes payments online needs to be PCI-DSS compliant.
To accept, store and process debit/credit card information, the hosting must be compliant with Payment Card Industry Data Security Standards (PCI-DSS). These standards were introduced to reduce credit card fraud. The hosting we provide is PCI-DSS compliant.
The PCI Security Standards Council are responsible for ordering regular tests on hosting providers. They test for vulnerabilities where hackers could potentially steal cardholder information. Our platform pass these independent audits.
An increasing problem for all websites are Distributed denial of service (DDoS) attacks. Normally if your site is attacked you don’t have much of a choice other than to weather the storm and wait for the attack to stop.
That is why we provide 1 Tbps+ Anti-DDoS protection, our enterprise level protection covers your website against most attacks. It aims to filter out malicious traffic, so you can carry on working without interruption.
One of the most common tactics for hackers is to use brute force login attempts to guess your site’s administrator/admin password. These are processes that scroll through common passwords and random letters and numbers to try to crack your password.
Our hosting platform includes protection which monitors login attempts to your website and checks for potential brute force login attempts. If they’re detected, it uses Google’s latest reCAPTCHA tool and if necessary blocks those attempts.
The protection also prevents our platform from being overloaded. Logins to our WordPress hosting platform are a hackers most popular target, but our protection also covers other common admin interfaces and logins.
Any emails or forwarders which are sent and received are subject to advanced anti-virus protection and anti-spam filters.
These filters are fully configurable so selected senders and domains can be allowed to bypass the content filter. The same goes with blocklists - you can create and manage your own from our control panel.
Whenever we reject a message for a known virus, known spam characteristics or blocklisting, the message is returned to the sender so the sender knows the email has been rejected.
One way to stop security breaches is to prevent criminals from accessing your code on the server. The Web Application Security (WAF) server helps protect your data and programs by blocking suspicious activity.
Common ways to attack a website are to use Web forms to insert malicious code. Forms are not covered by traditional firewalls, which should allow this information to pass from the user to the server where the website is hosted.
Cloud Next WAF examines each HTTP request for SQL injection, Trojans, cross-site scripts, routing, and many other types of attacks. Perform each inspection in less than one millisecond.
At Cloud Next we take cybersecurity seriously. We continuously work to ensure we provide fast and secure web hosting for all our customers.
We are certified by the UK Government-backed Cyber Essentials accreditation – demonstrating that we adhere to recommended IT security practices to keep customer data safe and protect our customers against the most common cyber attacks.
Talk to our friendly experts today. We're always happy to hear from you with any questions about our services.
Live Chat
UK Sales Team
Block Visitors
Our hosting allows you to block IP addresses, entire subnets or even whole countries.
Website Password Manager
You can add passwords to areas of websites or whole sites quickly & easily.
FTP Security Lock
FTP is locked by default. You can unlock this for a set period of time or from an IP address.
File Permissions Checker
Scan your website files for incorrect permissions and then correct these.