Top 10 Ways to Secure your Wordpress Install from Hacking!
 by Casey Markee

Top 10 Ways to Secure your Wordpress Install from Hacking!

  • We have installed Wordpress for many clients and continue to manage them on an ongoing basis. However, it's becoming harder and harder to secure the sites long-term. We use malware and protection tools like Sucuri or Wordfence on the sites but we don't feel that it's enough. Can you help?

Answer: It's not your imagination: it is getting harder and harder to secure Wordpress. The problem lies in the fact Wordpress is by far the most popular CMS platform in the world. It holds a 60% share worldwide and is used by an estimated 26% of all websites.

With such popularity, though, comes an increased security risk. In fact, security company Sucuri just published their Q2 2016 Hacked Website Report and again Wordpress was the industry leader in tracked infection cases with an overwhelming 78% of recorded intrusions.

Sucuri Tracked Hacking Intrusions by Platform 2nd Q of 2016

And these tracked intrusions and infections are growing. Per Sucuri's report total malware reports from the 1st Quarter to the 2nd Quarter of 2016 increased 38% and those attacks were SEO spam related. The report also noted that backdoor-type intrusion attacks increased by 71%.

Clearly, it's a dangerous place online, and even more so if you are using Wordpress.

What can you do to best protect your install and the installs of your clients from similar intrusions and SEO spam? Here are some strategies and best practices to consider.

  • 1. Keep your Platform & Plugins Current: Keeping your Wordpress Core, theme files and installed plugins updated and current is the single-greatest thing you can do to keep your site secured. As of this writing the current core version of Wordpress is 4.6.1. Wordpress lists the ful...