Roughly 20 percent of the web runs on the WordPress platform. It’s highly customizable, effective and secure. However WordPress and the plugins that bring additional functionality, need to be kept up to date!

Since 2013 there has been an increased amount of large scale WordPress brute force attacks. This is usually in the form of malicious scripts that cause a redirect of the website to go places you don’t want to go and once this happens it takes time to fix.

Factor in the time factor, stress factor and cost and it’s worth it to make sure this doesn’t happen to your website.

This isn’t just a WordPress issue either. We have read reports of the standard html websites getting hacked.

As hackers and spambots get more and more sophisticated you need to be aware that any information that resides on servers is always at risk, nothing is 100% safe. You need to be proactive in protecting your data by either doing regular maintenance or requesting ongoing maintenance.

So what does this mean and what can you do to ensure your website stays safe?

1. Just ignore it. If you are noticing alerts and notifications in your WordPress dashboard, you need to be proactive and update. If you don’t want to deal with it, request ongoing maintenance services through your website designer.

2. Passwords. A website with weak security can do a lot of damage to your business, reputation, and your readers and customers.

A large botnet of around 90,000 compromised servers has been attempting to break into WordPress websites by continually trying to guess the username and password to get into the WordPress admin dashboard.

The most basic step in strengthening your website security is your passwords.

Be sure you are frequently changing your passwords for your admin access and make them strong! Here are some good tips on creating strong passwords.

Keep your WordPress version and Plugins up to date! And before you add new Plugins to your website be sure they are currently supported. Your website is made up of the themes, plugins, core, and custom files that live on your server. If a patch is released and you don’t update, then your website becomes an easy target.

3. “I think I’ve been hacked”. If you suspect something is going on, call your hosting company. Some of the compromises start on the hosting server.

Solving the Problem

First don’t take it personal. It’s upsetting and you might feel violated. You’re not alone – on average, 30,000 new websites are hacked each day.

Run a scan using Anti-Malware from GOTMLS.NET. Upload the plugin into your WordPress dashboard under Plugins.

The scan will show you if there are issues.

Install Security Plugins – Before you have a Problem

These plugins do a great job of monitoring your website. To understand and know which solution is right for you visit the Plugin websites below.

1. Wordfence
2. iThemes Security

The best way to protect your website, get it cleaned and working again!

The security plugins do a good job of finding and eliminating problems, however you have to be proactive. Along with security you need to keep your comment SPAM under control. Learn more about the importance here.

Again, you need to keep your WordPress version and Plugins up to date! It won’t help you to have security plugins if you never login or check the alerts.

Other options if you have a lot of traffic on your website and if it’s a target is to have Sucuri monitoring services.

Sucuri Security