Harold Mansfield
12-16-2015, 01:20 PM
If you do use WordPress and are concerned about security, it's not actually rocket science. Just like with any website, knowing how to use your tools and a little common sense can save you from a world of hurt and inconvenience.
Anything can be hacked. Generally the annoyance hacks or infiltration, no matter how the website is built, is the fault of the website administrator's lack of knowledge or really cheap shared hosting plans from company's with terrible security and who only offer safety at an additional charge.
This past year I've had more people call me with hacked websites than any year before. I've seen some nasty hacks, viruses, and just straight out take overs that could have mostly been avoided.
9 times out of 10 they are annoyance hacks of opportunity that could have been completely avoided with a little due diligence...
keeping your software updated,
not using "admin" as your username,
not using easy to guess passwords,
not having 13 administrators on one site,
not using your server for storage,
not keeping old plug ins that you aren't using,
not installing things that you have no idea how to use or not properly vetting where they come from,
not using the cheapest hosting plan available for your most important marketing asset, and so on and so on.
The following article offers some common sense, a little bit of knowledge and a few things that anyone who runs a WordPress website can implement, many times in just a few minutes.
While it is true that strong passwords and proper permissions on a WordPress site can help provide good security there are a few little known methods of enhancing your WordPress security, while maintaining both sides of the security vs. usability equation.
https://ithemes.com/2015/12/16/4-little-known-ways-to-achieve-better-wordpress-security/
Anything can be hacked. Generally the annoyance hacks or infiltration, no matter how the website is built, is the fault of the website administrator's lack of knowledge or really cheap shared hosting plans from company's with terrible security and who only offer safety at an additional charge.
This past year I've had more people call me with hacked websites than any year before. I've seen some nasty hacks, viruses, and just straight out take overs that could have mostly been avoided.
9 times out of 10 they are annoyance hacks of opportunity that could have been completely avoided with a little due diligence...
keeping your software updated,
not using "admin" as your username,
not using easy to guess passwords,
not having 13 administrators on one site,
not using your server for storage,
not keeping old plug ins that you aren't using,
not installing things that you have no idea how to use or not properly vetting where they come from,
not using the cheapest hosting plan available for your most important marketing asset, and so on and so on.
The following article offers some common sense, a little bit of knowledge and a few things that anyone who runs a WordPress website can implement, many times in just a few minutes.
While it is true that strong passwords and proper permissions on a WordPress site can help provide good security there are a few little known methods of enhancing your WordPress security, while maintaining both sides of the security vs. usability equation.
https://ithemes.com/2015/12/16/4-little-known-ways-to-achieve-better-wordpress-security/