8 Great Ways To Protect Your WordPress Site From Vicious Hackers
BY: Chris Makara
Dec 18, 2013
Home > Blog > 8 Great Ways To Protect Your WordPress Site From Vicious Hackers

WordPress is the most popular content management systems (CMS) for websites. In fact I use it not only for this site, but for the majority of client sites as well. It is extremely flexible and can be customized for just about any business need. Previously, I have discussed the importance of focusing on your own website over social media, and whether you need a simple business website or a full blown e-commerce shopping cart, WordPress can meet almost any business need.

Unfortunately with most CMS platforms there will be those who look to expose loopholes within those systems, which means that WordPress is not exempt from these hackers. In fact, WordPress is frequently updated not only to add new features, but to close known loopholes.

However, you should not rely solely on the most recent update to for WordPress protection. I will give you my list of plugins that can help strengthen your site and how to protect your WordPress site from hackers. While nothing will protect you 100% from attacks, using these plugins will definitely decrease the chances of it happening through better WordPress security measures.

Take a Stand Against WordPress Hackers

Most hackers will look for anyway into your WordPress site they can find. Most commonly through attempting to login to your site through /wp-admin/. Luckily for us, there are some good plugins to help combat these attempts.

Bulletproof Security

One of the more popular methods for protecting a WordPress site against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection attacks is through the use of this plugin.

While it might be overwhelming at first glance after installing it, this plugin does quite a bit with minimal effort on your part. Simply follow the steps and messages displayed and you will easily get your website protected against common attacks found on WordPress sites.

Protect WordPress against hacking attempts

Login Security Solution

This simply plugin will block brute force attacks and track login IP addresses, usernames, and passwords. It takes just mere seconds to install and configure. A feature that I like is the option to setup email notifications of breach attempts so you can be immediately notified of any suspicious activity on your site.

Get the WordPress Login Security Solution

Protect Your WordPress Files

Being proactive in monitoring and protecting your WordPress files provides your site better chances of preventing malicious injections that will ultimately compromise your website.

WordPress Antivirus

This plugin is as simple as it can get. Once installed, just provide an email address for notifications. This plugin will automatically scan your files daily and send you an email notification should something need your attention.

Install WordPress Antivirus

WordPress File Monitor Plus

Knowing when a file has been added, changed, or deleted automatically will help you combat potential hackers. Installing this plugin is a breeze and straightforward.

Among the options you have are email notifications, admin alerts, and include/exclude the monitoring of specific file extensions.

Monitor WordPress file changes 

WordPress Update Notifications

If you are like me, you are often guilty of “ignoring” the update available notification you get when you are logged into your WordPress admin panel. Additionally, if you have many WordPress sites, it can be tough to stay on top of which installations or plugins need to be updated. By not updating your plugins and files, you are opening the door to having your site compromised.

This simple plugin will email you whenever an update is needed. Now there is no more excuses for not updating your installation and plugins.

Get notified of updates for WordPress plugins and core files

Backing Up Your WordPress Site

If you do not have a current backup of your WordPress site, you are severely risking all of the hard work you have put in to building your site. Would your site get hacked, it can be very costly to fix, or even worse you could actually lose all your files. There are many plugins available (as you will see below) which can automate this process for you. I recommend using a combination of plugins to ensure you have multiple instances of backups should one become corrupt or unable to be opened/re-installed.

Having a clean backup will allow you to easily fix your hacked WordPress site in most cases by re-uploading a previous instance of your website.

Online backup for WordPress

This simple plugin will allow you to easily backup your WordPress site. Like many WordPress backup plugins, this one is simple to install. This plugin encrypts your data while it is downloaded, emailed, and stored.

One potential disadvantage is that the service used to store your backup will only store up to 100MB for free. If your backup is larger, you may have to pay for more storage.

Backup WordPress online

WordPress Backup to Dropbox

To me, this plugin is a no brainer. Dropbox is excellent for many reasons (to get an account click here). Your basic Dropbox account should have more than enough storage space for your WordPress backup unless you have thousands of posts, images, etc. on your site. Even then, simply upgrade your Dropbox account and you should have enough storage space.

What is great about this plugin is that it is truly a set it and forget it WordPress backup plugin. Simply install it and connect it to your Dropbox account, configure a few settings and you are good to go. Be sure to select your database to be backed up as well.

Backup WordPress to Dropbox

Google Drive for WordPress

As an avid user of Google Drive, backing up my WordPress site to this service makes perfect sense. This plugin is simple to setup and before you know it, your Google Drive account will be connected to your WordPress site.

When setting this up, be sure to click “yes” to backup your database as well. If you do not select this, then you are only backing up your files.

Backup WordPress with Google Drive

How are You Protecting Your WordPress Site?

While there are no doubt many available plugins for protecting your WordPress site, which ones do you use on your websites? Have you found them to help minimize successful hacking attempts on your website? Or, maybe you have put off being proactive and ended up with a monster headache trying to get your site back online?

Sound off with your experiences, both good and bad in the comments below.

Or if you know a business owner who has had issues protecting their site, be sure to send them a link to this post on how to secure WordPress.

Chris Makara

Chris Makara

I have over 12 years of experience in Interactive Marketing & Digital Strategy, with a focus on SEO, Social Media & Demand Generation. I am an avid Football Fan, Golf Enthusiast & Ambidextrous Bowler. I can also be found on Google+, LinkedIn, and Twitter.
Chris Makara
(Visited 655 times, 1 visits today)

Leave a Reply

73 Comments on "8 Great Ways To Protect Your WordPress Site From Vicious Hackers"

Notify of
avatar

Sort by:   newest | oldest | most voted
Elmarie Porthouse
Guest
Elmarie Porthouse
2 years 8 months ago

Thanks for these, Chris. There are some I haven’t installed but really need.

Michael Musto
Guest
Michael Musto
2 years 4 months ago

Great advice! I use most of these already Chris, but one I hadn’t used, helped out a ton just today. The Login Security Solution plugin has stopped the flow of spam account registrations. I was getting up to 30 per day, but I haven’t had any since yesterday after I installed it.

Alex Cooper
Guest
2 years 3 months ago

I’m a big fan of the Google Authentication plugin. It offers two factor authentication for your WordPress sure alongside your other authentication apps.

Dale Morris
Guest
Dale Morris
2 years 2 months ago

Hey Chris,
I’m personally liking Securi, Backup Buddy and a couple of other simpler backup apps. I completely agree with you as to having a backup system to your backup system.
Another nice article.
Thanks,
Dale

Jan Koch
Guest
1 year 10 months ago

Very interesting post, a friend shared it with me on Twitter.
I protect my site as follows:
I use the WordPress firewall WordFence that monitors file changes, login attacks, blocks IP ranges that are known to be malicious, etc.
My site is backed up weekly to my Dropbox account. I have hardened the file permissions and removed the wp-index.php from my WP root folder. My database user has the minimal rights necessary. My .htaccess contains some neat stuff to prevent attacks. I’m currently outlining a plan to move to SSL. And some more things 🙂

Cheers,
Jan

Steven
Guest
Steven
1 year 10 months ago

Awesome tips, Chris ☺ I use the following (using them alongside each other makes it a nightmare to hackers):

1. WP Content Copy Protection (a ton of content protection features and a personal favorite simply because it works, and its the best in content protection) : http://yooplugins.com/downloads/wp-content-copy-protection-pro/ (free version available here: https://wordpress.org/plugins/wp-content-copy-protection/)

2. CodeCipher : obfuscate your HTML and encrypt your JS source code output (keep source away from hackers) : http://yooplugins.com/downloads/wp-codecipher/

3. WP Image Copyright notice (adds elegant image copyright notice to image context and can be used to extend WPCCP) : http://yooplugins.com/downloads/wp-image-copyright-notice/

4. Printoflauge : can be used to extend WPCCP – replaces users printing clipboard with warning message : http://yooplugins.com/downloads/wp-printoflauge/

5. Pic-Decoy – The BEST image protection plugin for WordPress (in the world) : replaces all your images with invisible blank images and when a user attempts to copy your images (in any way possible), then blank images are served instead of the real ones : http://yooplugins.com/downloads/wp-pic-decoy/

Fatima Hussain
Guest
Fatima Hussain
1 year 4 months ago

Great stuff! I get lost and emotional if I get minor issues with my Blog! I can’t imagine what I’d do if something major happened! This information is very useful, Hosting company has suspended my account due to some infected files uploaded by hacker 0r i don’t know my site name is brightverge.com please share some tips to make strong my site security. I thank you for you time & effort, it’s clearly not one of these 5 minutes posts! Quality! Love it, regards

John Crooks
Guest
5 months 17 days ago

Thanks for the list, your blog posts are consistently worth reading.
I’m curious about your Popup (that encourages newsletter signups)? Is it a plugin or have you custom-coded it? Nice new effect on it, too!
For plugins, I found P3 (Plugin Performance Profiler) which shows how much lag time each plugin is using on your site — helps decide whether a plugin is worth using or not.
Thanks!

Mohd Arif
Guest
5 months 6 days ago

I really love the security plugin called Wordfence. It allow me to auto block any IP trying to hack my site, it notifies me of out-of-date plugins, and if you do get hacked it will show you which files have been changed, then show you a comparison of before and after, and easily allow you to go back to the previous version of any file. The basic model is also free with the option of a more advanced paid model. Very slick and super easy to set up and use.

Mohd Arif
Guest
3 months 9 days ago

thank you for sharing this informative piece of work. I have been using yoast plugin since last few years. The plugin is simple, yet covers all the essential features required to optimize the blog for search results.

trackback
1 month 26 days ago

Google

Always a massive fan of linking to bloggers that I like but really don’t get a good deal of link appreciate from.

trackback
1 month 23 days ago

garden tower company

[…]Every after in a though we select blogs that we study. Listed beneath are the most up-to-date web pages that we choose […]

trackback
1 month 21 days ago

Piece Of Heaven

[…]check beneath, are some completely unrelated websites to ours, nevertheless, they’re most trustworthy sources that we use[…]

trackback
1 month 21 days ago

viagra

[…]that could be the finish of this article. Right here you will uncover some internet sites that we think you’ll enjoy, just click the hyperlinks over[…]

trackback
1 month 18 days ago

SATTA MATKA RESULT

[…]we like to honor several other world-wide-web web pages around the web, even if they aren’t linked to us, by linking to them. Below are some webpages really worth checking out[…]

trackback
1 month 18 days ago

pills

[…]check beneath, are some absolutely unrelated web sites to ours, nevertheless, they’re most trustworthy sources that we use[…]

trackback
1 month 18 days ago

global funding

[…]check below, are some completely unrelated internet websites to ours, nevertheless, they may be most trustworthy sources that we use[…]

trackback
1 month 17 days ago

Precious Metals

[…]usually posts some quite intriguing stuff like this. If you’re new to this site[…]

trackback
1 month 16 days ago

viagra

[…]Every the moment in a even though we pick blogs that we study. Listed beneath would be the newest websites that we choose […]

trackback
1 month 16 days ago

instalar addons en kodi

[…]The information and facts mentioned in the report are a number of the most beneficial readily available […]

trackback
1 month 15 days ago

福井脱毛

[…]Wonderful story, reckoned we could combine a couple of unrelated data, nonetheless definitely worth taking a look, whoa did one particular find out about Mid East has got a lot more problerms as well […]

trackback
1 month 15 days ago

福井脱毛

[…]Here is a superb Weblog You may Locate Fascinating that we Encourage You[…]

trackback
1 month 13 days ago

employees at home

[…]the time to study or check out the material or web sites we have linked to below the[…]

trackback
1 month 13 days ago

Taxi Sankt Anton

[…]Sites of interest we’ve a link to[…]

trackback
1 month 12 days ago

우리카지노

[…]we prefer to honor a lot of other web web sites around the web, even when they aren’t linked to us, by linking to them. Underneath are some webpages really worth checking out[…]

trackback
1 month 12 days ago

cheapest virtual number buy

[…]always a significant fan of linking to bloggers that I love but really don’t get a whole lot of link enjoy from[…]

trackback
1 month 10 days ago

Jaydani

[…]usually posts some pretty intriguing stuff like this. If you’re new to this site[…]

trackback
1 month 9 days ago

sewing thread

[…]Sites of interest we’ve a link to[…]

trackback
1 month 8 days ago

FP75R06KE3

[…]one of our visitors just lately proposed the following website[…]

trackback
1 month 8 days ago

life insurance lawyer

[…]check below, are some totally unrelated web sites to ours, having said that, they may be most trustworthy sources that we use[…]

trackback
1 month 8 days ago

android tv box review uk

[…]that would be the end of this report. Right here you’ll find some web sites that we think you will enjoy, just click the hyperlinks over[…]

trackback
1 month 7 days ago

Theatre tickets

[…]we came across a cool website that you may appreciate. Take a search when you want[…]

trackback
1 month 6 days ago

tampa bay magazine

[…]Wonderful story, reckoned we could combine a handful of unrelated data, nonetheless seriously really worth taking a search, whoa did 1 study about Mid East has got a lot more problerms as well […]

trackback
1 month 5 days ago

فيلم رعب

[…]below you will locate the link to some sites that we believe you ought to visit[…]

trackback
1 month 5 days ago

led flashlight store

[…]one of our visitors not long ago advised the following website[…]

trackback
1 month 5 days ago

Google

The data talked about in the article are a number of the most effective readily available.

trackback
20 days 17 hours ago

Home Security

[…]always a big fan of linking to bloggers that I appreciate but don’t get a whole lot of link appreciate from[…]

trackback
20 days 11 hours ago

app maker free

[…]Sites of interest we’ve a link to[…]

trackback
19 days 22 hours ago

Home Automation Florida

[…]that would be the end of this write-up. Right here you will obtain some websites that we feel you’ll enjoy, just click the hyperlinks over[…]

trackback
19 days 21 hours ago

funny videos

[…]usually posts some really intriguing stuff like this. If you are new to this site[…]

trackback
18 days 12 hours ago

e-learning

[…]the time to read or pay a visit to the subject material or web sites we’ve linked to below the[…]

trackback

http://www.drorpinuiem.co.il/

[…]check below, are some totally unrelated websites to ours, on the other hand, they may be most trustworthy sources that we use[…]

trackback
18 days 2 hours ago

taweez for love

[…]please check out the web-sites we adhere to, including this a single, as it represents our picks through the web[…]

trackback
17 days 4 hours ago

http://pdr-training.com

[…]Here is a superb Weblog You might Discover Intriguing that we Encourage You[…]

trackback
17 days 3 hours ago

more info

[…]just beneath, are quite a few completely not related web pages to ours, however, they are surely worth going over[…]

trackback
16 days 18 hours ago

Fancy sexy box

[…]Here are a few of the internet sites we advise for our visitors[…]

trackback

real work from home opportunities

[…]Wonderful story, reckoned we could combine a couple of unrelated data, nonetheless definitely worth taking a appear, whoa did 1 master about Mid East has got far more problerms too […]

trackback
13 days 20 hours ago

penny auction guide

[…]always a huge fan of linking to bloggers that I like but don’t get lots of link really like from[…]

trackback
13 days 11 hours ago

YATESPERFORMANCETRAINING.COM

[…]The details talked about inside the write-up are several of the very best accessible […]

trackback
12 days 14 hours ago

venice-hotel-guide.com

[…]usually posts some incredibly intriguing stuff like this. If you are new to this site[…]

wpDiscuz
I’m Chris Makara and I share my 13+ years of
Real world digital marketing experience
without the theories or concepts.