Symantec's Vulnerability Assessment

Protect Your Site Against the Latest Security Threats.


What makes Symantec SSL certificates the most premium options in the industry? For starters, all Symantec SSL certificates include a daily website malware scan to alert you if your website ever gets infected with malicious software aka "malware." Additionally, certain Symantec certificates now come with the addition of a vulnerability assessment, which helps extend your security beyond https to your public-facing web pages and reduces the risk of being blacklisted by Google or other search engines.

To truly understand what the Vulnerability Assessment feature does and the benefits it will offer your company, you first must understand the security risks companies face on a day-to-day basis. Symantec released their newest vulnerability assessment this week, highlighting recent discoveries in internet security. From 2011 to 2012, the number of reported vulnerabilities to website security rose 6%; in 2013 they increased yet again making it obvious that running an online business or website is becoming more and more risky.

Of the sites scanned by Symantec, over 50% were found to have been vulnerable to attack, and 24% of those were considered to have critical vulnerabilities.  Malware infection, one of the biggest emerging security threats, “often comes as a direct result of website vulnerabilities”.

At the beginning of the year, Sony was fined nearly $400,000 for the security breach of their PlayStation Network, and that’s just one example, security breaches can be expensive for any company – both big and small. Symantec found that nearly a third of all attacks were targeted at small businesses because they are less likely to have rigorous security standards or conduct regular audits of their websites and servers. For hackers this means that stolen information usually goes unreported.

Business owners are more at risk because they often misunderstand the risks they face. IT Managers and administrators often overestimate the security of their site, and think that on average their main risk is from ‘brute force’ attacks, unsophisticated attacks that rely on multiple attempts to steal information. But in reality Symantec found that the main threat is coordinated attacks that infect sites with malware, and rely on spoofing and scripting to make their way into servers and websites. This means properly securing your website – and knowing how your site is at risk – is more important than ever.

Remember, that by ignoring website security you are putting yourself at a substantial risk. Malware infections, which continue to grow as the most prevalent security issue, will result in your website being banned from Google and other search engines – which will have a long-term negative impacts on your search rankings and health of your business.

Those who conduct regular vulnerability assessments often report higher confidence in the security of their sites and are in a good position to patch any problems detected. Symantec offers a Vulnerability Assessments feature with their certificates which give you a regular look at the health of your site, and offer malware scans to notify you if your site is infected.  The vulnerability assessment helps you quickly identify and take action against the most exploitable weaknesses on your customers' Web site.

Vulnerability assessment includes:

  • An automatic weekly scan for vulnerabilities on public-facing Web pages, Web-based applications, server software, and network ports.
  • An actionable report that identifies both critical vulnerabilities that should be investigated immediately and informational items that pose a lower risk.
  • An option to rescan your customers' Web site to help confirm that vulnerabilities have been fixed.

For more on Symantec SSL certificates and their free bundled vulnerability assessment, please visit our website: https://www.thesslstore.com/symantec.aspx. Symantec’s vulnerability assessment is available with the Secure Site Pro with EV, Secure Site with EV, and Secure Site Pro SSL certificates.