Techmoon - Wordpress Security

1. TECHMOON Top 5 WordPress Website Security Tips

2. INTRODUCTION • WordPress is the most well-known content management system that is used on over 30% of all the websites on the internet today. • Ultimately, it’s free to use, but there are a number of premium features, which come available at reasonable prices.

3. Why we should be concerned about security. Recent studies have shown that over 70% of sites on the internet are vulnerable to attacks from cybercriminals. This is because webmasters fail to provide their websites with adequate security. In addition to that, close to 10% of security loopholes, on a WordPress website, is created by having a weak password. So the first thing you’ll want to do is ensure you’re using a complex password. There are a number of things you’ll need to be aware of if you want to secure your site.

4. SECURITY TIPS Use Two-FactorAuthentication Switch to HTTPS 05 01 04 Change Your Password Regularly Update Your WordPress Site Regularly 02 03 Use Login Limits

5. 1. Use Two-Factor Authentication • If you implement two-factor authentication on your login page, you can almost guarantee the security of your site. • When you adopt this two-factor method, the user is required to provide two modes of authentication. • It could be a standard password, and a secret code or question. This helps by increasing the level of security, right at the login screen.

6. 2. Update Your WordPress Site Regularly • WordPress comes out with a new release, it always comes with improved security measures. Lots of vulnerabilities and bugs are identified and repaired, with each new version. • Updating your WordPress is easy. • Depending on the type of update, whether it’s a small update or major update, will determine whether or not you’ll need to update your WordPress site manually or whether it’ll happen automatically. • Whenever end users identify a particular issue with WordPress, whether it be a fault or malicious bug, the development team will get to it, and release a new update that irons out these identified problems. • Thus, if you don’t update, you put your site at risk.

7. 3. Use Login Limits • When you use login limits, you protect your site against brute force attacks, which typically work, by consistently making login attempts. • Adding a login limit to your website is relatively simple. The best way to do it is by downloading the appropriate plugin. • These plugins are typically multifaceted, which means, they’ll offer additional forms of security, which you may want to look into. • There are plugin that will limit login attempts, to no more than 3 – 5.

8. 4. Change Your Password Regularly • One of the most effective ways to keep your website security is by constantly changing your password. You’ll want to keep a note of your password strength so that hackers cannot easily guess it. • Consider using special characters, numbers and uppercase and lowercase letters.

9. 5. Switch To HTTPS If you want to use HTTPS, then the first thing you’ll need to do is purchase an SSL certificate. The difficulty of attaining one depends greatly on your hosting company. Once the backend of the website has been moved to HTTPS, you’ll then have to go through the arduous task of switching the site over from HTTP to HTTPS. There are many plugins that you can use to do this, not only will you need to change the site address, but you’ll also have to change all the image URLs (in posts), and your plugin URLs, ensuring that nothing points to the old HTTP.

10. CONCLUSION With this we conclude that it is necessary to keep yourself up to date. And be aware of the new viruses which can cause damage to your system. And the certain remedies to fix them. techmoon