Mobile versions of websites
Posted: Tue Feb 18, 2025 5:39 am
In the area of websites for mobile users, WordPress shows its overwhelming superiority. The vast majority of WordPress templates are responsive, and therefore 93% of Czech WP websites are responsive . Another 5% of WP websites use a purely mobile version of the website (subdomains such as m.DOMENA.cz, etc.). This means that 98% of websites that run on WordPress have a mobile version. Do you know what the national average is, including all content management systems?
TTPS
HTTPS is essentially a necessity for a new website, or a new standard if you like. The Internet protocol also scores points in search, and if a company works with PPC , the absence of SSL can also bring problems in the form of rejected ads when working with sensitive data. However, our survey shows that Czech webmasters are only gradually becoming familiar algeria phone number list with some of the pitfalls that SSL certificates bring. Only 42% of websites use the SSL cryptographic protocol from one of the providers - the rest are not yet addressed by SSL. It should be noted that, with the exception of larger websites that rely on paid certificates, free SSL in the form of Let's Encrypt is almost dominant in the SSL area.
The most used web hosting for WordPress websites in the Czech Republic
It is also very interesting to look at the largest WordPress web hosting providers in the Czech Republic. Here is a table of the TOP 10 providers with the number of websites we have counted.
The security of WordPress websites in the Czech Republic is... very poor. Here are a few random statistics:
More than 87% of websites easily "blah" what plugin versions their site is using - which is literally a party invitation for automated bots that try to hack WordPress sites daily via 0-day vulnerabilities
Only 35% of WordPress websites are currently running version 5.0 and above. It is a small consolation that version 3.XXX is on "only" 2% of Czech WP websites
On 50% of websites, the operator's email address can be found without any problems, robotically.
Almost 95% of websites leave the wp-login.php address open, through which someone can try to guess passwords
I hope no one in the Czech Republic deletes the readme.html file on their web hosting
87%
Easy detection of plugins including version
35%
Running on a new version of WP
95%
Public login page
In our experience, installing a WordPress environment, then selecting a template and not addressing security is ultimately suicide for the website. Especially in terms of user comfort. Why? This topic would be worth an article of its own, but simply put, an unsecured WordPress website will be visited by many times more robots than usual. And if the HW resources reserved for the website run out, the web hosting provider will limit or slow down the website, regardless of whether it is a robot or a human. The solution is not simple. We recommend removing / securing most of the access options for "those bad" robots, or specialized WordPress hosting . Unfortunately, well-known security plugins directly in WordPress sometimes overload the website even more by processing a bunch of attack attempts, which is also not an ideal solution.
Below you can see the log from the firewall on our web hosting - this firewall is designed to block access to specific pages of the website if they are robots or "strange" users. Even with a firewall, thousands of "users" come to snoop on 1 single website every day with the aim of logging into the WordPress website (often from Asia). A WordPress website that is not protected by a firewall at all can sometimes have tens of thousands of accesses per day (and web hosting for a few crowns is really not enough for that).
TTPS
HTTPS is essentially a necessity for a new website, or a new standard if you like. The Internet protocol also scores points in search, and if a company works with PPC , the absence of SSL can also bring problems in the form of rejected ads when working with sensitive data. However, our survey shows that Czech webmasters are only gradually becoming familiar algeria phone number list with some of the pitfalls that SSL certificates bring. Only 42% of websites use the SSL cryptographic protocol from one of the providers - the rest are not yet addressed by SSL. It should be noted that, with the exception of larger websites that rely on paid certificates, free SSL in the form of Let's Encrypt is almost dominant in the SSL area.
The most used web hosting for WordPress websites in the Czech Republic
It is also very interesting to look at the largest WordPress web hosting providers in the Czech Republic. Here is a table of the TOP 10 providers with the number of websites we have counted.
The security of WordPress websites in the Czech Republic is... very poor. Here are a few random statistics:
More than 87% of websites easily "blah" what plugin versions their site is using - which is literally a party invitation for automated bots that try to hack WordPress sites daily via 0-day vulnerabilities
Only 35% of WordPress websites are currently running version 5.0 and above. It is a small consolation that version 3.XXX is on "only" 2% of Czech WP websites
On 50% of websites, the operator's email address can be found without any problems, robotically.
Almost 95% of websites leave the wp-login.php address open, through which someone can try to guess passwords
I hope no one in the Czech Republic deletes the readme.html file on their web hosting
87%
Easy detection of plugins including version
35%
Running on a new version of WP
95%
Public login page
In our experience, installing a WordPress environment, then selecting a template and not addressing security is ultimately suicide for the website. Especially in terms of user comfort. Why? This topic would be worth an article of its own, but simply put, an unsecured WordPress website will be visited by many times more robots than usual. And if the HW resources reserved for the website run out, the web hosting provider will limit or slow down the website, regardless of whether it is a robot or a human. The solution is not simple. We recommend removing / securing most of the access options for "those bad" robots, or specialized WordPress hosting . Unfortunately, well-known security plugins directly in WordPress sometimes overload the website even more by processing a bunch of attack attempts, which is also not an ideal solution.
Below you can see the log from the firewall on our web hosting - this firewall is designed to block access to specific pages of the website if they are robots or "strange" users. Even with a firewall, thousands of "users" come to snoop on 1 single website every day with the aim of logging into the WordPress website (often from Asia). A WordPress website that is not protected by a firewall at all can sometimes have tens of thousands of accesses per day (and web hosting for a few crowns is really not enough for that).