Best Security Practices for WordPress Websites

Posted: June 23, 2015 in Articles
Tags: , , ,

Wordpress VulnerabilitiesI would like to thank Malwarelist.net for posting this article. They have a great deal of useful articles on malware and other threats to your computer. I would encourage readers to check out some of their internet security articles once you are finished reading here.

Your blog or other WordPress website likely has a great deal of time and effort put into it, and often it can have great personal significance to the owner. There are people and programs out there, however, for one reason or another, that seek to disrupt it or otherwise take it over. That is why you need to be as security conscious as possible when using your WordPress website and administering it. The last thing you want is for your website to be the next victim in a long string of attacks.

Here are some tips and suggestions you should consider using in the future in order to make your website on WordPress as safe as possible.

WordPress security

1. Be Careful with Admin and Editorial Powers

When you hand out administrative or other editorial powers for your website, they are not so easy to take back and someone can wreak havoc on your website should there be any falling out between you and the person you gave the powers to. Of course having someone other than yourself able to change things on your blog is sometimes necessary, but it is a major decision that should be given extremely careful thought.

If you are ever on the fence, try to put aside your own short term convenience and think about whether you really need someone else to do anything for you. If might save your blog in the future, and you’ll be happier knowing that you are the one in full control on your website.

2. Keep Your Account Safe

Your WordPress account is your gateway to your website (and any other websites you are involved with) and thus keeping it safe should be of paramount importance to you. You should try not to let your username get out there too much, and in addition to this you should make your password as strong as possible (using different types of characters and a lot of them). Never let anyone know your passwords, even the people closest to you. Also be sure to change it every couple of months.

In addition to this, you are going to want to keep the E-mail you’ve linked your account to extra safe, taking as many precautions as you can. You may want to try and make a separate email account just for setting up and running your website, so that your other internet activities don’t expose it to any risks.

3. Be Wary When Blogging on the Go

A lot of people like to blog when they are travelling or out on the town. Others might want to make small edits or respond to comments. This is generally a recommended thing, as a strong level of viewer interaction makes for a better website. Some others still might just want to check their numbers or make a small stylistic changes to their website they just thought of.

Regardless of the reason, if you are changing or viewing your blog while you are on a public network you are putting yourself at risk. A simple setup allows anyone to see your username and password if you are using WordPress on an unprotected network. This would allow them to easily get into your account.

Your best option if you are going to still be updating on the go is to use a VPN (Virtual Private Network), which will create a safe connection for you on an unprotected network and maintain your privacy for you. Cyber thieves would not be able to access your data when connecting this way.

4. Watch Where You Link

You may want to watch out about the different websites you link to or recommend on your blog, as some of them might not be so safe for people to go to. That is not an association your blog wants to have, and it is better for your blog to be completely separated from the more negative elements of the internet.

Also, being connected like that may invite trouble to your website, and thus may become the target of a “practical joke.” Therefore you should always put safety ahead of SEO optimization and take a close look at where you are directing your readers. If they are hurt, they won’t come back.

5. Update WordPress Often

Whatever version of WordPress you are using, you should probably upgrade to the latest version available. The newer versions have extra security measures in place for you to utilize as well as close the security holes that were in previous versions. This means that not only will you be better protected, but that you should take note that hackers will be more likely to notice the security holes which were announced as fixed. If a hacker can tell which version you are using, then you are at a severe disadvantage.

6. Backup Your Website

Just in case the worst does come to pass and you are the victim of malware or a hacker, make sure that you have your entire website backed up some way. This way you can either recreate your blog or website if you cannot retrieve the original page. If you can, you should check to see if there were any changes made and then you can restore whatever it necessary. It is not ideal, but it is better than losing everything.

Also to note is that if the worst should happen, you should change everything security related that is possible to any connected accounts. You don’t know how far a hacker got in before you caught up, so it is best to assume the worst and take the appropriate precautions.

Thank you for reading, and I wish you the very best for your website. Try to remember these helpful tips and look up more if you are ever worried about your website.
WordPress security plugins
Useful links – security plugins for WordPress:

  • WP Author Slug – plugin that  prevent your login name from being shown in the author archive’s URL
  • Limit Login Attempts – plugin that automatically blocks an suspicious IP after it exceeds the login limit
  • BackUpWordPress – plugin that automates takes the backups

Cassie PhillipsThis was contributed by Cassie, a technology enthusiast whose main area of interest is internet security. If you are uncertain about which VPN might be best for you, Cassie invites you to take a look here: http://securethoughts.com/category/reviews/. Secure Thoughts is one of the best possible online sources for information regarding internet security.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s