June 9, 2016

WordPress Security

As well as the normal website design and SEO services we can also maintain and administer an existing website.

We were recently contacted by a new customer whose website had become the target of hackers. The result of all of this is that their website had become full of spammy posts. Google was subsequently penalising their website in search engine rankings.

To get the website back into good health we had to delete the spammy posts all 400 of them. The hackers had also created a number of phoney admin accounts approx 150 these were also deleted.

The website used the default Administrator account, we suspect that hackers were able to comprise the account via a brute force attack. A new administrator account was created with a non-generic name  using a strong password. Also, a new WordPress editor account was set up for the client to continue to create new and edit existing posts. Luckily Wordpress and its plugins were fairly up to date, as a precaution, these were all updated to the latest versions.

WordPress Security In Summary

  1. If you are using WordPress avoid using 'Administrator' for the Administrator account, also avoid posting with the admin account use the Author or Editor roles.
  2. If you have multiple people contributing to your website and blog, use the appropriate WordPress role.
  3. Always make sure plugins and WordPress are at the latest versions.
  4. Disable and remove the files from any Plugin's that are no longer been used.
  5. If there is even the slightest possibility that your website has been hacked, consider changing passwords.
  6. Always ensure you have a backup of your WordPress (or normal static) website.
  7. Consider using a security plugin with WordPress such as the All in One WP Security & Firewall or Wordfence

[/et_pb_text][et_pb_image src="https://peppardcreative.co.uk/wp-content/uploads/2016/06/security.jpg" show_in_lightbox="off" url_new_window="off" use_overlay="off" align="left" force_fullwidth="off" always_center_on_mobile="on" use_border_color="off" saved_tabs="all" alt="Wordfence WordPress security plugin in Action " title_text="Wordfence WordPress security plugin in Action " show_bottom_space="on" _builder_version="3.0.100"]

[/et_pb_image][/et_pb_column][/et_pb_row][/et_pb_section][et_pb_section bb_built="1" specialty="off" prev_background_color="#000000" _builder_version="3.19.3" global_module="47428"][et_pb_row global_parent="47428" background_position="top_left" background_repeat="repeat" background_size="initial"][et_pb_column type="4_4"][et_pb_post_nav global_parent="47428" _builder_version="3.19.3" prev_text="previous" next_text="next" in_same_term="on" title_font_size="10px" /][/et_pb_column][/et_pb_row][/et_pb_section]

Leave a Reply

Your email address will not be published. Required fields are marked *

Peppard Creative 

Established in 2014 we specialise in small business website design. Affordable web design in Oxfordshire, Berkshire and beyond.
web design directory
hello world!
envelope-ophone linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram