|

Securing Your WordPress Site

A recent post on the Wordfence blog discusses a major set of attacks against WordPress sites, title WP-VCD. Most of my readers will not be interested in the technical details (which are, in fact, very interesting!), but the basic actions to keep your site secure listed near the end are worth your time.

If you do take time to read the earlier material, you will improve your understanding of why these steps are important. In summary, the attacks in question are carried out through nulled and pirated plug-ins. The simple answer is to be extremely careful where you get software. In the search for lower cost, you can end up paying a very high price indeed.

This will explain why I require any sites on my Energion Publications server to be updated regularly, and in fact will update these sites myself as necessary. Since these sites are all for my IT clients or for authors for Energion Publications, this is something I can enforce, and I do.

If you are hosting your WordPress site in any unmanaged environment, be paranoid. Many of my clients know my unofficial motto: Paranoia has served me well!

Similar Posts

  • Smishing

    Smishing is sending a faked text to your phone in an attempt to gain personal information. This personal information can be used to gain access to other accounts. Here’s a link with more information. It’s targeted at me, as a service provider, but it provides you with information you need as well.

  • |

    WP-CLI for Updates

    Note that this is at an extremely introductory level. If you’re looking for more advanced help, there are many other resources elsewhere, including the one linked at the end. I’ve recently most most of my sites from cPanel/WHM to Cyberpanel. I will post some notes on transferring sites. There are many excellent resources, but also…

  • From BarracudaMSP: 5 Security Tips

    I got these in the mail today, the day after Christmas, but they’re good for continuing visits, and they’re good year-round. Five Powerful Security Tips for Keeping Data Secure this Christmas

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.