Securing Your WordPress Site

ByHenry Neufeld December 17, 2019December 17, 2019

A recent post on the Wordfence blog discusses a major set of attacks against WordPress sites, title WP-VCD. Most of my readers will not be interested in the technical details (which are, in fact, very interesting!), but the basic actions to keep your site secure listed near the end are worth your time.

If you do take time to read the earlier material, you will improve your understanding of why these steps are important. In summary, the attacks in question are carried out through nulled and pirated plug-ins. The simple answer is to be extremely careful where you get software. In the search for lower cost, you can end up paying a very high price indeed.

This will explain why I require any sites on my Energion Publications server to be updated regularly, and in fact will update these sites myself as necessary. Since these sites are all for my IT clients or for authors for Energion Publications, this is something I can enforce, and I do.

If you are hosting your WordPress site in any unmanaged environment, be paranoid. Many of my clients know my unofficial motto: Paranoia has served me well!

Wordpress

Slideshow Gallery Problem
ByHenry Neufeld September 9, 2010

I installed Slideshow Gallery on the Energion Blogs site, and ran into a problem. Unfortunately I used “Network Activate” (which was not what I wanted to do), rather than just activating it for a single site. The result apparently tries to get user privileges before the appropriate includes are loaded. The solution, however, is simple–don’t…

Read More Slideshow Gallery Problem
Computer Security

Malware Warning for Windows Users
ByHenry Neufeld May 12, 2017

If you don’t have automatic updates on your computer, you need to check this: Massive Global Ransomware Attack Underway, Patch Available. This is from the folks at Wordfence, who, in my experience, have been right on the money multiple times. If you don’t have automatic updates set, update your computer immediately and make sure to…

Read More Malware Warning for Windows Users
Computer Security

Basic Malware
ByHenry Neufeld July 28, 2011

I’m writing this article so that I can refer callers to it. It’s going to be very, very basic. I’ve been getting calls from people who have been referred by my clients, generally with serious malware issues on their computers. When I look at the machine I invariably find that there is a fairly simple…

Read More Basic Malware
Blogs | Wordpress

WordPress Multisite, Multiple Root Domains, htaccess
ByHenry Neufeld July 2, 2014

Sometimes those who know how things like a .htaccess file works fail to mention really simple things. So I’m going to mention this one. I have a site with multiple domain names that I want to consolidate. Thus I’m creating a single site, but because of numerous existing links, I want the domain names to…

Read More WordPress Multisite, Multiple Root Domains, htaccess
Computer Security

Good Post on Ransomware
ByHenry Neufeld September 27, 2016

How to beat ransomware: prevent, don’t react, from MalwarebytesLabs. The one thing I would add to this article is further emphasis on backup. I can’t emphasize it enough. No matter how attentive you are, you cannot absolutely be certain that you won’t get hit by ransomware. You can be careful, but most people use their…

Read More Good Post on Ransomware
Computer Security

2 Factor Authentication
ByHenry Neufeld December 30, 2023

Read More 2 Factor Authentication

Similar Posts

Leave a ReplyCancel reply