willem.com

WordPress: 10 security best practices to lock down your site

Prevent hackers from breaching your website

Mar. 31, 2019 -

A lot of people use WordPress to manage their website, therefore it's no surprise people ask me to have a look at their site's security. As ethical hacker, I encounter WordPress in different shapes, sizes and states. Some of them are really badly protected against hacks. Prevent your site from being hacked using these 10 practical tips.

Continue reading
Limit access by IP basis to XML-RPC using a .htaccess file
Limit access by IP basis to XML-RPC using a .htaccess file
Password dictionary attacks use lists of known (leaked) passwords, you can find them on shady parts of the internet
Password dictionary attacks use lists of known (leaked) passwords, you can find them on shady parts of the internet
Update WordPress from the wp-admin dashboard
Update WordPress from the wp-admin dashboard
Use WP Security Audit Log to keep an eye on what's happening with your WordPress website (wpsecurityauditlog.com)
Use WP Security Audit Log to keep an eye on what's happening with your WordPress website (wpsecurityauditlog.com)
Somewhere in a datacenter there is a machine like this hosting your website
Somewhere in a datacenter there is a machine like this hosting your website
Leaking personal user information from the WordPress REST API
Leaking personal user information from the WordPress REST API

Other stories

all blog posts

Tagged

CloudCyber SecurityHackingNetworkingServerWebdesign

Articles (147)