I received an email from Natasha Wentz at MakeAWebSiteHub.com. She had seen my earlier article on securing WordPress, and asked to be added to the resource list. I took a look at the article, and decided that it was too good to bury in a year-old post, and I offered to write this post to feature their article.
Nicely written by Joe Fylan, the article covers WordPress security risks, and answers the question why someone would want to compromise your WordPress site. He covers the differences between targeted and non-targeted attacks, and then dives into an explanation of the OWASP (Open Web Application Security Project) Top 10 website vulnerabilities.
Then he gets into managing WordPress security and how to harden your WordPress site. This includes
- backup your website
- pick a solid web host
- use only reputable themes and plugins
- create a strong user ID and password
- limit access to vital part of your website
- use a security plugin
- monitor your website
Then he discusses what to do if your website is hacked.
If you own, operate, or manage a WordPress website, you ought to click through and take a look at this information packed article.