We recently put some measures in place to monitor, measure and track just what is happening with our website...and not in the usual way of hits and page views. We wanted to see the how often exploits were tossed our way. We were not surprised at the frequency, we were surprised by the sheer number of attempts were attempted during each session. It was like shining a black light on a cheap hotel bedspread.
We cannot stress enough that website operators keep their software up to date, and.. back up often. Having to take a website offline is a not only a source of aggravation, but also lost revenue.
One of the simplest forms to limit the points of entry is a solid htaccess file. By stopping things before they reach web pages, not only saves on bandwidth, but also reduces server load.
By adding a few lines