Yet another reason why you need to keep WordPress and plugins updated – the FBI reports that ISIL, the terrorist group, is targeting WordPress installations with old plugins or no security features.
WordPress Security – What Can I Do?
- Perform backups. At least monthly – I prefer weekly. Files and database.
- Use a backup service that shows changes to your code. Review every report sent to you. I provide this service, including reviewing the reports, for $10/month or $15/bi-weekly.
- Log into your WordPress site at least weekly and run updates.
- Use secure passwords and usernames. Not just WordPress, but FTP and hosting control panels as well.
- Change those passwords at least quarterly!
- Change the name of your admin folder (I use iThemes Security for this).
- iThemes Security will also lock out brute force attacks (multiple attempts to guess your username/password).
These days, all website security, not just WordPress security relies on constant vigilance, keeping your site updated, checking for unauthorized file changes and secure passwords. Please save yourself time, money and stress by logging into your WordPress installations now and running updates!
WordPress Security Links
[listly id=”4H6″ layout=”gallery” show_header=”false” show_author=”true” show_sharing=”true” show_tools=”true” per_page=”25″]