Why not wordpress? What instead?

Wordpress appeals to investors with its low implementation costs and quickness, but are these really the most important aspects when creating a website? The choice of technology is a fundamental decision at the beginning of the software development process and it cannot be easily reversed when we are approaching the end. That is why it is worth consulting specialists, who will analyse the business needs and potential risks, as well as advise the customer on the optimal technology.

We are often asked by clients why we don't create websites using Wordpress, or shops using WooCommerce?

For our company the main concern is the security of implemented solutions - this is our priority. As Risk Based Security report shows, as much as 77% of available plug-ins have gates that allow access to private data, interception of transmitted information or the possibility to modify plug-in settings without authorized access.

You can read the report here: https://www.riskbasedsecurity.com/2022/01/11/wordpress-vulnerabilities-more-than-doubled-in-2021

Statistically speaking, installing 4 plugins opens your site to attacks, unfortunately this is too high of a probability. In practice, we have encountered cases where Wordpress website developers were using up to 20 plugins!

It is the multitude of plugins that is Wordpress's big advantage here, making it quick and easy to configure even the more complicated functions, so with the lack of security - it loses its advantages. The performance is not good enough, or the creation and development of dedicated plugins is a nuisance for programmers. Technologies change quickly, so it is worth following them and using more modern systems, which have their foundations written in today's programming standards. Wordpress has been on the market for 19 years and is being rebuilt constantly, such a situation is favourable for the development of potential dangers, which is confirmed by the above report.

You might be asking, that plugins are updated all the time, so the problems are only temporary?

Subsequent updates unfortunately mean more dangerous gateways, this is what the article I shared was about. In the last year, the number of gateways has doubled instead of decreasing. We have a big problem when such a website stores confidential contracts with personal data of various people, makes it possible to buy courses or materials of this kind.

The two situations above are based on our experience. We conducted security audits of websites in medium-sized companies. In the first case, we easily accessed scans of 50,000 ID cards, and in the second we downloaded all courses in PDF and video formats without paying a single penny. Both of these mini systems were based on Wordpress and these are the threats that we try to warn our customers about.

Is your company interested in a secure alternative to wordpress? Contact us and we will present our alternatives.