Keep your WordPress site safe: Do these quick things today

Boost your WordPress site’s security now to prevent massive headache later

No one wants to think about hackers, server crashes, security breaches or simply dumb user errors that can endanger your website. But if you’ve put the time into building your online presence on WordPress, it’s worth taking the time to protect it.

WordPress is usually very stable and secure, with millions of users who not only use it daily, but work to improve it through an open-source community. But nothing on the internet is foolproof – in fact, as recently as January WordPress had to patch an important vulnerability. Partially because it is so popular, with millions of websites around the world, WordPress is a large target for hackers.

The old saying “hope for the best, prepare for the worst” definitely applies to online security. And if your website is a key component of your business, it could mean protecting your bottom line. Here are a few actions you can take today to make your site safer:

Change your username and password:

This is internet security 101, but it still bears repeating. Make sure your username isn’t the same as your site’s URL or the all-too-common “admin” – these are the first things a would-be intruder will try to guess. And make sure your password really is strong. You might consider creating random passwords and using a password vault like 1Password or LastPass to store them.

Add security with plugins:

via WordPress.orgOne of the most wonderful things about WordPress is the wide variety of plugins that are created and maintained by the passionate community of WordPress users. Chances are, for anything you want to do with your site, there’s probably a plugin that can make your life easier.

There are a variety of security plugins available, including options to limit the number of login attempts a user can make, add a captcha to your login page, or many ways to automatically backup your site – BackupBuddy is a well-reviewed option.

Since it is an open source community, not all plugins are created equal. Consider how long a plugin has been around, how many positive reviews it has and how recently it has been updated when considering whether to add it to your site. And once you add it, make sure to keep it updated.

While there are many very good plugins for WordPress, they aren’t bulletproof. Which brings us to option three…

Do a manual backup:

This tip is for technical users only, but to be truly safe it helps to have backups of your site in multiple places. Think an automatic backup done by your plugin or hosting service, one saved on your computer and one saved in Dropbox or Google Drive. It might seem excessive, but think about how upset you would be if your entire site – and all the work that went into it – was suddenly lost. This article from Skillcrush gives a few different tips for how to do a full manual backup of WordPress.

Or, have McNary Marketing and Design help:

Let’s face it – thinking about this stuff is no fun. MMD offers monthly, weekly and daily backup and security packages so your site is always safe and up-to-date – and so you can keep your focus on what really matters in business and life. Contact us for more details.

Let’s talk about your site’s security