WordPress has become one of the more popular web platforms, both for personal and professional websites, because it is simple to use and yet very flexible. But this popularity also makes it a target for attackers. So whether you run your own page or that of your company, you should follow these simple tips to keep your WordPress page secure.
- Secure your Side of the Equation. It won’t matter what security exists within WordPress if your system is or has been exposed to malware. Always make sure your operating system and the software that you run is up to date with the latest versions of those programs. Do the same for your web browser. These updates may seem like a nuisance, but each one includes the latest security upgrades that patch previously exposed vulnerabilities that attackers exploit. Also make sure you have a robust antivirus program and that you regularly use it to scan your computer for malicious programs.
- Secure WordPress. Always make sure that you are running the most current version of the platform, with the WordPress patches and that all of your plugins are also up to date. Delete any plugins you no longer use; simply deactivating them won’t get rid of their code from your server, which attackers could use to exploit your site.
- Eliminate Server and Network Vulnerabilities. Make sure your web host is secure and reputable, and always make sure your network is secure, be it an office or home network. Don’t work on your WP site over unsecured WiFi like those in coffee shops and airports, which are gold mines for attackers.
It won’t matter what security exists within WordPress if your system is or has been exposed to malware.
- Minimize ‘Admin’ Use. Because the admin login account for WordPress is the key to accessing all parts of your site, it is the coveted jewel for WP attackers. If your system or your browser became infected with password-detecting infections, routinely accessing your page via the Admin account could have dire consequence. Use the admin page only to perform administrative functions. Create a separate editor account from which you post new content.
- Make Good Passwords. Login pages are the front doors to websites, and having a weak password is like living in a bad neighborhood and never locking the door when you go out. Make strong passwords — scramble letters and insert numbers and non-alphanumeric symbols into your entry keys, and never use words that can be found in the dictionary — and change them regularly.