4 Super Easy Ways to Secure Your WordPress Blog

by | Feb 1, 2016 | 0 comments

One of the worst things that can happen to your blog is to have it hacked. This can be an absolute nightmare, especially if your site is your primary source of income.

Anyone who has experienced having their site hacked can tell you how difficult it was to fix things and regain trust from their audience. Moreover, let’s face it, this is something that you do not have time to do. You are busy creating new content, connecting with your audience and other tasks for your businesses. Taking hours or even days to fix a major hack, especially if your site has been deleted is something that you do not have time to deal with. There can be nothing worse than visiting your site and realizing that all of your content, years of hard work have all disappeared.

Luckily, there are super easy ways to secure your WordPress blog.

1 Square ButtonChoosing the Right Admin Name

The first super easy way to secure your WordPress blog is to avoid generic usernames for signing in.

When setting up your administer for your site you want to avoid using a generic name like “admin”. This is the most common used name that hackers will try to use when attempting to hack your WordPress site. It is important to select a username that is unique and not related to the name of your site.

A great choice for a username would be something that is unique to you and not related to the name of your site or reveals any private information.

2 Square ButtonLimit Login Attempts

The second super easy way to secure your WordPress blog is to limit login attempts.

RECOMMENDED POST:  The Real Cost of Starting a Profitable Blog

You can set a limit on how many times a user can attempt to log in before it blocks them temporarily. Usually, this time, deterrence will keep bots from continually trying to hack into your WordPress site.

Many hackers do not sit at their computers and try to hack your site manually. They have developed robots to do this for them. They pick a site and run through generic names and passwords until they can crack the code and get access to your site. By limiting how many attempts can be made to sign in you will shut down their attempt to hack. This not to say they will not return after the time delay but it will defer them for a time.

3 Square ButtonUtilize a Plugin like WordFence

The third super easy way to secure your WordPress blog is to use a plugin like Wordfence to gain more information how the who is accessing your blog, or attempting to.

Protect your WordPress blog with Wordfence

WordFence is a great plugin that will block suspicious IP addresses after they have attempted to log in to your site multiple times. It will also give you information as to what hackers are trying to use to log in to your site, such as, the username.

After utilizing WordFence for a period, you will notice which usernames are being abused to attempt to sign into your site. The number one attempted name will be an admin. I can guarantee that. From there the username will include a variation of your site name and your site name with admin attached to it. This is why you will want to avoid using generic usernames.

You will also notice that you are getting a bit of activity from certain IP addresses attempting to sign into your site. This is for a few reasons, hackers, sites that will hack your site and then try to sell you repair services. Yes, there are businesses how there that are creating a demand for their business. I know it is super terrible of them. But not everyone has a moral compass.

RECOMMENDED POST:  Breakup with LeadPages for under $100

4 Square ButtonBack Up Your Site Regularly

The fourth super easy way to secure your WordPress blog is back up your content regularly.

Depending on your hosting provider, this may be a feature that you can use with your host. However, if it is not included, there are plugins that you can utilize to download backups of your site. Depending on how often you add new content will make a difference to how often you would want to backup your site. I would follow a schedule of how often you post.

I would encourage you to store your backups in a place other than the server your site is on. Chances are if one part is comprised, the other could also be. It is better to keep your backups in a separate, secure place.

If you are looking for a great plugin to backup your WordPress blog but on a limited budget, I recommend Updraft Plus. This is a free plugin that is full featured and allows backups to many different storage options including Dropbox and Google Drive.

Backup your WordPress blog with Updraft Plus

With a multifaceted defense plan in place, you will keep your WordPress site more secure and protecting all of your hard work.

Sarah Crosley

Sarah Crosley

Founder of The Creative Boss

After years of trying to run an online business I have seen quite a few ups and a whole lot more downs. I spent hours every day researching how to make a go at some elusive, passive income. I felt like it was something that was just a myth, and then I figured out what the real meaning of passive income was: to work smarter, not harder. It’s not just sitting around watching the dollars pour into your bank account, but you can create products that will sell and still be sitting on the beach or at home in pajamas, and I want to share with you what worked for me. I don’t want you to spend years trying, failing, and throwing in the towel.

Recent Posts


RECOMMENDED POST:  How to Make a Successful Start Here Page

Submit a Comment

Your email address will not be published. Required fields are marked *

Who is Sarah?

I am the founder and lead designer here at The Creative Boss. After years of running handmade shops on Etsy and scouring the interwebs for tips and advice on how to grow and succeed online, I knew that there needed to be a change!The Creative Boss was launched to offer a one stop shop for busy creatives who want to succeed online with ease.
Enroll in Get Your Blog On! for free!

Popular Blog Posts

Error: Please enter a valid email address

Error: Invalid email