This post may contain *affiliate links. For more information please see our Disclosure Policy
Do you think about the security concerns of having an online business? Is it keeping you from enjoying the full flexibility and power of WordPress? The dreaded p*pdig saga is extremely rare as are Plugin issues but if you are concerned or feel that WordPress is inherently unsecure, then you’re missing out on all the great things WordPress has to offer, for no good reason!
keeping your blog safe
The fact is, while WordPress sites do get hacked, they are no more dangerous than any other php-based websites. The problem is that WordPress is open source, which means that anyone can read the code. Couple that with the enormous popularity of WordPress, and it’s easy to see why you hear about hacks on what may seem like a regular basis but imagine how many WordPress sites are out there and if you have a fab host like mine they will do everything they can to keep you safe.
That being said, it doesn’t mean WordPress is unsafe. By implementing just a few security best practices, you can greatly reduce your risk of being hacked.
Keep Your Site Up to Date
This is by far the biggest risk when it comes to security. New vulnerabilities are discovered in WordPress and it’s plugins and themes on a regular basis, and if your site is out of date, it is at risk. Hackers actively search for outdated websites they can attack, so make it a point to keep your site up to date or hire me to maintain your site so it’s done regularly. It includes all plugins, themes, and the WordPress software itself.
Use Strong Passwords
Second only to out-of-date installations when it comes to inviting hackers, weak passwords are regularly exploited with a technique called a “brute force” attack. Basically, a hacker sets a computer program to repeatedly attempt to log into your site using thousands of the most commonly used passwords and what are known as “dictionary” words. This is why I now let my computer choose a ridiculously random password for most websites I visit.
This type of vulnerability can be easily avoided simply by choosing good passwords. Ideally, your passwords should:
- Be longer than 12 characters
- Contain upper and lower case letters, numbers and symbols
- Never be used for more than one site
- Never be stored in plain text on your computer
- Never be sent by email
Also, consider using a password manager such as LastPass which I love, to generate and securely store good, strong passwords. You’ll never have to worry about remembering your passwords, and you’ll greatly reduce your risk of being hacked.
Be Smart About Your Hosting
Rather than looking for the least expensive (and potentially riskiest) hosting option, choose a host that allows you to isolate each site on its own cPanel. Doing so will greatly improve the security of your website. The cheapest is not always best!
In the end, the safety and security of your site and its data is entirely up to you. Keep your software up to date, use good passwords, and choose a secure hosting environment, and you’ll be well ahead of the game on this.