This topic is not completely suitable on my website, but as ya’ll know, my website was hacked.
So I felt I had to post this to make sure this will never happen to you.
I do use security systems on my website, but apparently this wasn’t enough.
To be honest, I never even thought about why someone would even want to hack my website.
It’s not that I have a payment system or that I have governmental information on my website. Hihi.
Maybe someone just really hates me, but still. Why go through all this effort just to
take me off the air for 3 weeks.
Anyhow, I know better now, and I experienced the need of having a secured website.
So, I dug into Google and found a few Plugins and easy programs to make sure
that your website is fully locked. Never say never, but you sure make it hard on them to crack your site.
10 tips on how to make your website safer:
1. Updates. Very childish, but you need to keep your plugins up-to-date. This is one of the main reasons
why websites go down. You can manually set them to update automatically. In that case you don’t have to even
think about it. This counts for themes as well.
2. Check your plugins on vulnerability. Some plugins are commercial, but vulnerable. Please advise Google and topics
about the plugins you’ve installed.
3. Delete the plugins you do not use. Do not just deactivate them. You’ll forget you have them, which leads to my first point.
4. How logical this may sound, make sure you have a strong password, but also a strong username!!! Admin as a username? Nah….. Way to easy. Try something like this: D*(^&2FbwSC(_@Bn! (just kidding..)
5. Security Plug-ins. There are a few plugins which scan your website, just like you have a security system on your computer. Why not use these on your WordPress? Try these: iThemes Security or Codeguard.
6. Change your login URL. If you go to www.yourwebsite.com/wp-admin anyone can go there and start hacking your site.
If you change this URL, you’ll make it a lot harder for them to even find this page. You can do this with: Lockdown WP admin.
7. Backups. It all makes sense, but when the time comes and you don’t have a recent backup, you’re screwed.
8. Pick a good host. My mistake was that I had a very poor hosting. (one.com) Your site is your precious little baby (or that’s in my case) and you don’t want to put your baby with a bad babysitter. Simple.
9. Limit login attemps. When someone tries to login to your website using tons of login combinations you can block there
IP address by installing the WP Limit Login Attemps plugin.
10. And the last one. Don’t put your username and password in your computer or leave yourself logged in on other computers. This all makes sense, but a little more awareness can never harm you. People are easily distracted.
I hope this all helps a little! It can never give you a guarantee but we can make sure to give them bastards
a hard time.