Malware, spam, hackers and security breaches are a 24/7 security concern. By default our hosting provides security to keep you safe against harmful web attacks. All of our hosting packages come with free SSL certificates, malware scanning, are PCI-DSS compliant, include 1 Tbps+ DDoS protection as well as brute force login protection and email scans plus much more.
The tools we provide help you to save time, money and protect your sites. All security tools & services are included in all hosting packages. We will never charge you for these - you shouldn't have to pay for website security.
SSL/TLS certificates are now an important part of secure web browsing, as well as any connections by FTP or Email. Legal regulations and promotion by Google have made it essential that every site should have one. We partner with Let’s Encrypt to provide every site we host with a free SSL certificate.
All of our free SSLs are 'wildcard' certificates to ensure that you can secure sub-domains as well as your primary domain using one certificate. To ensure that you can get a free 'https' certificate your site needs to use the Cloud Next name servers. Our free SSL certificates provide the same level of encryption and security as a paid for SSL certificate.
We scan all sites on our WordPress, Linux and Windows hosting platforms on all packages every day for common malware. Using commercial and custom tools, we scan and alert you to known malware signatures contained in files. Malware can compromise your site, giving criminals access to your site’s data, email and content.
We give you a detailed report on the results of this scan in our your Account Control Panel and for each individual site in StackCP.
Any business that processes payments online needs to be PCI-DSS compliant.
To accept, store and process debit/credit card information, the hosting must be compliant with Payment Card Industry Data Security Standards (PCI-DSS). These standards were introduced to reduce credit card fraud. The hosting we provide is PCI-DSS compliant.
The PCI Security Standards Council are responsible for ordering regular tests on hosting providers. They test for vulnerabilities where hackers could potentially steal cardholder information. Our platform pass these independent audits.
An increasing problem for all websites are Distributed denial of service (DDoS) attacks. Normally if your site is attacked you don’t have much of a choice other than to weather the storm and wait for the attack to stop.
That is why we provide 1 Tbps+ Anti-DDoS protection, our enterprise level protection covers your website against most attacks. It aims to filter out malicious traffic, so you can carry on working without interruption.
One of the most common tactics for hackers is to use brute force login attempts to guess your site’s administrator/admin password. These are processes that scroll through common passwords and random letters and numbers to try to crack your password.
Our hosting platform includes StackProtect, which monitors login attempts to your website and checks for potential brute force login attempts. If they’re detected, it uses Google’s latest reCAPTCHA tool and if necessary blocks those attempts.
The protection also prevents our platform from being overloaded. Logins to our WordPress hosting platform are a hackers most popular target, but StackProtect also covers other common admin interfaces and logins.
Any emails or forwarders which are sent and received are subject to advanced anti-virus protection and anti-spam filters.
These filters are fully configurable so selected senders and domains can be allowed to bypass the content filter. The same goes with blocklists - you can create and manage your own from our control panel.
Whenever we reject a message for a known virus, known spam characteristics or blocklisting, the message is returned to the sender so the sender knows the email has been rejected.
Our hosting allows you to block IP addresses, entire subnets or even whole countries.
Website Password Manager
You can add passwords to areas of websites or whole sites quickly & easily.
FTP Security Lock
FTP is locked by default. You can unlock this for a set period of time or from an IP address.
File Permissions Checker
Scan your website files for incorrect permissions and then correct these.
We have made a considerable investment within our chosen data centre to make sure that it provides the right environment, for every type of service we offer. Our data centre in Derby provides resilient and powerful cloud based hosting. With multiple, redundant 10Gbps connections between the data centre and the Internet, the Cloud Next data centre environment is perfect for all of your hosting needs.
Cloud Next provide greener cloud hosting. Initiatives such as carbon offsetting along with the latest technologies to increase power efficiency will help to reduce our carbon footprint and act as our contribution towards the larger picture of protecting the environment. This will, in turn, help our customers become greener too. Our continuing investment in the latest Dell server hardware ensures the technology we use is the most energy efficient available.
The Data Centre is protected by a FM200 Fire Suppression System which fills the sealed data centre with gas to extinguish any fire quickly without the use of water as well as a state of the art VESDA system. VESDA provides the earliest possible warning of an impending fire hazard. VESDA buys the critical time needed to investigate an alarm and initiate an appropriate response to prevent injury, property damage or business disruption.
The whole site benefits from high-tech CCTV both internally and externally, with all images recorded and stored for 3 months. There are three locking doors to go through to access either of the four halls in the Data Centre, which are locked and can only be opened using secure fobs which are only held by named staff. The building is surrounded by a 7 foot perimeter fence with an electric gate and intercom access system. The Data Centre is manned 24/7 with Security guards on patrol outside normal business hours.
Power to the building is supplied via an independent sub-station located within the site boundary. In the event of a mains power failure the UPS (Uninterruptible Power Supply) seamlessly takes over to make sure there is a consistent source of power to the Data Centre. In the unlikely event of a prolonged mains power failure, the 3x 800kVA N+1 Generators will back up the UPS. The generator is diesel driven and there are contracts in place with suppliers to make sure that the generator always has enough fuel.
The Data Centre is fully climate controlled with N+1 Stulz DX Cybercool Air Conditioning Systems. The units control the temperature and humidity levels to ensure the optimum temperature is maintained. In the unlikely event of failure, there are additional units on standby to continue the control of the environment. The facility is equipped with floor and ceiling vents on alternate rows to assist air flow, cold air is circulated under the floor and drawn up through the racks cooling the equipment.