Improve your WordPress site’s security
We put together a list of recommendations to help you improve your WordPress site’s security and reduce the risk of being affected by the high increase of hackers targeting WordPress websites.
Keep WordPress up to date. WordPress is an open source software, which means that it is developed, edited and improved by a large community of users all around the world. Every time you see an update available on the Dashboard execute the updates.
Have a website backup. Your hosting provider should run regular backups of all websites that they host. We recommend checking with your hosting provider to make sure they have a backup of your site in case the update results in the loss of your site. This will also help in the event that your website is hacked as they may be able to restore your site to a date prior to the breach. Ask your host how often they backup sites.
Install a WordPress security plugin. There are a number of free and premium plugins specifically designed to protect your website from common WordPress security threats. We strongly recommend spending money on a premium security plugin that will scan and protect your website for file changes, code injections, malware, vulnerabilities, etc.
Keep plugins and themes up to date. Plugins and themes are also constantly updated by their authors to increase their security and functionality. Most updates are aimed at patching vulnerabilities and strengthening against attacks.
Delete unused plugins and themes. Each plugin and theme installed in your website is a potential path for hackers. Keeping strict control of your plugins and themes will reduce the likelihood of being hacked and it will make it easier for you to keep an eye on the updates.
Invest in a good hosting provider. Spend time researching for local hosting providers that specialise in WordPress. A hosting provider that specialises in WordPress is more likely to provide you with a customer support team that understands how your website works and be more helpful when your site is experiencing issues.
Change your password often using password generators. The longer your password is the better it works. We recommend using random combinations of letters in capital and lower case with numbers and symbols. Remember to change them as often as possible.
Don’t use “admin” as a username. If your default username is “admin” you can change it using the phpMyAdmin tool in your cPanel. If you do not feel comfortable making these types of changes, talk to your developer and ask them to change your username to something else.
Get in touch with us if you’d like to know more about how we can help you manage your website.