Security breaches and exposure to malware are an ever present threat. Our secure hosting keeps you safe against harmful web attacks. We provide Free SSL Certificates, Malware Scanning, a PCI-DSS Compliant platform, 1 Tbps+ DDoS Protection, Brute Force Login Protection, Email Scans plus much more.
The tools we provide help you to save time, money and protect your sites. All security tools & services are included in all hosting packages. We will never charge you for these - you shouldn't have to pay for website security.
SSL/TLS certificates are an integral part of secure web browsing and data transfer. Legal regulations and promotion by Google have made it essential that every site should have one. So we partner with Let’s Encrypt to make every site we host has one.
Our free SSLs are 'wildcard' certificates. So you can secure subdomains as well as your primary domain using one certificate. To get a free 'https' certificate your site needs to use the Cloud Next name servers. They provide the same level of security as any other SSL certificate.
WordPress users also have another way to check for malware, through our WordPress Checksum Report in our WordPress Tools suite. This checks that your WordPress core matches the official WordPress repository.
We scan all websites on our WordPress, Windows and Linux hosting platforms every day for common malware. Using commercial tools and systems developed in-house, we discover all sorts of nasties. Malware – such as web shells or mail/spam daemons – can compromise your installation, giving criminals access to your site’s data, email and content.
We give you a detailed report on the results of this scan in our your Account Control Panel and for each individual site in StackCP.
If your business takes card payments, your hosting needs to be PCI compliant.
To accept, store and process debit/credit card information, the hosting provider must be compliant with Payment Card Industry Data Security Standards (PCI-DSS). These standards were introduced to reduce credit card fraud.
The PCI Security Standards Council are responsible for ordering regular tests on hosting providers. They test for vulnerabilities where hackers could potentially steal cardholder information. Our platform consistently pass these independent audits.
Distributed denial of service (DDoS) attacks are a growing hazard on the web. If your site is attacked, usually you don’t have much of a choice other than to weather the storm and wait for the attack to stop.
That’s why we introduced 1 Tbps+ anti-DDoS protection. This enterprise level protection covers you against most attacks. It only filters-out malicious traffic, so you can carry on working without noticing any interruption.
A common attack vector for cyber criminals is to use ‘brute force’ to guess your website’s ‘admin’ password. These are applications that cycle through common passwords and use trial and error – random letters and numbers – to try to crack your credentials.
Our platform includes StackProtect, which monitors log-in attempts to your website. It checks for potential 'evil' automated requests. If they’re detected, it uses Google’s latest reCAPTCHA tools and if necessary, blocks those attempts.
This also stops our platform being slowed-down. It blocks up to six million requests – every day. Logins to our WordPress hosting platform are our most popular target, but StackProtect covers all common website logins.
All emails and forwarders sent and received are subject to advanced antivirus and anti-spam protection.
These filters are fully configurable via the webmail control panel. So certain senders, domains and TLDs can be allowed to bypass the content filter entirely. The same goes with blocklists: you can create your own from our control panel.
Whenever we reject a message for a known virus or network blocklisting, the message is returned to the sender so the sender knows what's happening.
Our hosting allows you to block IP addresses, entire subnets or even whole countries.
Website Password Manager
You can add passwords to areas of websites or whole sites quickly & easily.
FTP Security Lock
FTP is locked by default. You can unlock this for a set period of time or from an IP address.
File Permissions Checker
Scan your website files for incorrect permissions and then correct these.
We have made a considerable investment within our chosen data centre to make sure that it provides the right environment, for every type of service we offer. Our data centre in Derby provides resilient and powerful cloud based hosting. With multiple, redundant 10Gbps connections between the data centre and the Internet, the Cloud Next data centre environment is perfect for all of your hosting needs.
Cloud Next provide greener cloud hosting. Initiatives such as carbon offsetting along with the latest technologies to increase power efficiency will help to reduce our carbon footprint and act as our contribution towards the larger picture of protecting the environment. This will, in turn, help our customers become greener too. Our continuing investment in the latest Dell server hardware ensures the technology we use is the most energy efficient available.
The Data Centre is protected by a FM200 Fire Suppression System which fills the sealed data centre with gas to extinguish any fire quickly without the use of water as well as a state of the art VESDA system. VESDA provides the earliest possible warning of an impending fire hazard. VESDA buys the critical time needed to investigate an alarm and initiate an appropriate response to prevent injury, property damage or business disruption.
The whole site benefits from high-tech CCTV both internally and externally, with all images recorded and stored for 3 months. There are three locking doors to go through to access either of the four halls in the Data Centre, which are locked and can only be opened using secure fobs which are only held by named staff. The building is surrounded by a 7 foot perimeter fence with an electric gate and intercom access system. The Data Centre is manned 24/7 with Security guards on patrol outside normal business hours.
Power to the building is supplied via an independent sub-station located within the site boundary. In the event of a mains power failure the UPS (Uninterruptible Power Supply) seamlessly takes over to make sure there is a consistent source of power to the Data Centre. In the unlikely event of a prolonged mains power failure, the 3x 800kVA N+1 Generators will back up the UPS. The generator is diesel driven and there are contracts in place with suppliers to make sure that the generator always has enough fuel.
The Data Centre is fully climate controlled with N+1 Stulz DX Cybercool Air Conditioning Systems. The units control the temperature and humidity levels to ensure the optimum temperature is maintained. In the unlikely event of failure, there are additional units on standby to continue the control of the environment. The facility is equipped with floor and ceiling vents on alternate rows to assist air flow, cold air is circulated under the floor and drawn up through the racks cooling the equipment.