The online world is like a ruthless dungeon filled with hackers and spammers. According to Forbes, Google blacklists 10,000 websites each day. Even big companies are prone to cyber attacks. How much more with the startups? No one is safe. Customers should be protected from these vicious attacks.
You can’t Give, what you don’t Have! If the website of the web host failed the Security tests, they can’t make their customers website pass the tests. Based from study, to Optimize the Security of the WordPress website, it must be Optimized manually, and use the Cloudflare CDN. You can’t improve the Header Security and Mozilla Observatory tests by simply changing the Web Host. Because most web hosts, host the website “As It Is”. If no Website Optimization done by the web developer, then expect a failed Security test.
Below is the Header Security and Mozilla Observatory tests of the website of the 40 popular Web Hosts.
Rank | Company | Header Security | Mozilla Grade | Mozilla Score | Mozilla Test Passed |
---|---|---|---|---|---|
1 | Creative Web | A+ | B+ | 80 | 10 |
2 | Google Cloud | A | B | 75 | 8 |
3 | ScalaHosting | A | B- | 65 | 8 |
4 | IBM Cloud | A | F | 5 | 7 |
5 | A2 Hosting | A | F | 0 | 6 |
6 | WP Engine | B | C+ | 60 | 7 |
7 | NameHero | B | F | 20 | 8 |
8 | Ionos | B | F | 15 | 7 |
9 | AWS | C | A | 90 | 9 |
10 | SiteGround | C | B | 70 | 9 |
11 | Vultr | C | B- | 65 | 9 |
12 | Hostwinds | C | C | 55 | 9 |
13 | Hostinger | C | D+ | 40 | 7 |
14 | InMotion | C | D+ | 40 | 6 |
15 | GreenGeeks | C | F | 5 | 8 |
16 | Z.com | C | F | 0 | 7 |
17 | OVH | D | C+ | 60 | 7 |
18 | UpCloud | D | C+ | 60 | 8 |
19 | Namecheap | D | C | 55 | 7 |
20 | DigitalOcean | D | C | 50 | 8 |
21 | HostPapa | D | D+ | 40 | 7 |
22 | Contabo | D | D+ | 40 | 7 |
23 | AccuWeb | D | D+ | 40 | 6 |
24 | BlueHost | D | F | 20 | 6 |
25 | JustHost | D | F | 20 | 6 |
26 | InterServer | D | F | 5 | 7 |
27 | Alibaba Cloud | D | F | 0 | 7 |
28 | CrazyDomains | D | F | 0 | 5 |
29 | GoDaddy | D | F | 0 | 5 |
30 | MilesWeb | D | F | 0 | 5 |
31 | Hetzner | D | F | 0 | 6 |
32 | TMDHosting | F | F | 20 | 6 |
33 | FastComet | F | F | 20 | 6 |
34 | Cloudways | F | F | 0 | 5 |
35 | TsoHost | F | F | 0 | 5 |
36 | DreamHost | F | F | 0 | 5 |
37 | LiquidWeb | F | F | 0 | 5 |
38 | iPage | F | F | 0 | 4 |
39 | HostGator | F | F | 0 | 4 |
40 | MochaHost | F | F | 0 | 4 |
Note:
Header Security is the Primary rank and followed by the Mozilla Grade. Because the Mozilla Grade has error on the Content Security Policy Report Only which gets a 0 score instead of -20. CSP Report Only means No CSP which is detected by the Header Security Test.
Creative Web is the most Secure website based from the Header Security test. Unlike the Traditional Web Hosts which host the website “As it is”, Creative Web optimizes the WordPress website, uses the LiteSpeed server and Cloudflare CDN. This result to A+ Header Security and B+80 Mozilla Observatory rating.