WordPress Security: Keep Those Hackers Out of Your WordPress Blog !
- Scan your site daily for security problems, using the award-winning Bitdefender malware database
- Detect vulnerable themes and plugins
- Check for URLs on your site that are blacklisted by Google
- Automated full site backups (Pro version)
- Works with the WP-Security-Scan plugin to give you comprehensive, continuous protection
- Sign up for Free!
Imagine the shock of waking up one morning to discover your blog had been hacked.
I can tell you – it makes you feel angry and violated.
Plus – you’ll lose all your search engine traffic because Google will blacklist your site, and getting them to clear it from the blacklist is a pain in the butt. And then you still have to deal with Yahoo and Bing.
It’s not nice.
Worse: hacking is one of the few growth industries around today.
Think your site is too small for the hackers to be concerned with?
Don’t believe it! They want control of as many sites as possible, irrespective of size, fame or popularity.
But here’s a solution.
The Website Defender protection suite, which includes the WP-Security-Scan plugin, offers one of the most comprehensive protection systems available for WordPress-based websites.
I’ve used it since they took over the WP-Security-Scan plugin, and it provides me with a constant running score on how the security of my site is doing.
Even if you take all the security precautions you can, no website is ever completely secure from hacking. If someone wants to get into your site badly enough they will.
So what Website Defender does is scan your entire site each day and alert you to any files or folders that have been changed.
You can then review these alerts and take immediate action if any of the changes were unauthorised.
Your Website Defender dashboard
Here’s a sample of the information presented via your Dashboard:
The Alerts section, top left, enables you to click on any of the severity levels to see a listing of the alerts:
… and clicking on the alert itself will bring up the full details:
And once you examine the alert details you will be able to see changes that were authorised (because you or one of your team made them) and those that were not, and take the appropriate action.
Filter your alerts
If there was one thing I found frustrating when I first started using Website Defender it was that I was given too many alerts.
While this does make for information overload at the outset, I soon learned how to filter and manage them.
And, in reality, I’d rather have too many alerts that I can filter, than too few. At least by telling me everything that had changed on my site I knew they wouldn’t be missing anything.
And I can assure you, based on my experience, Website Defender does not miss anything!
So when you first set up your site take the time, each day, to review the alerts you receive. Those that you know about, or that happen regularly, you can mark as ‘Resolved’ or ‘Ignore’.
For example, in the screenshots earlier I was alerted to a theme that had been deleted. But I knew about the change, because I had deleted the theme myself, so I marked it as resolved – end of story.
If the alert is something you know about, and something that happens regularly, you can mark it to be ignored.
Another example: I used to receive alerts about an executable file in my wp-content/uploads folder, but I knew (and authorised) what placed it there, so I marked it as ‘Ignore’. Again, end of story.
The longer you use website Defender the more familiar you’ll become with your website’s structure, and the more easily (and quickly) you’ll notice when something isn’t right.
It’s like your own personal health: just as knowing your own body is the best way of catching anything that’s wrong early, and fixing it quickly, the same goes for the health of your website!
And Website Defender makes that process intuitive and easy.
An easy, intuitive way to manage the health of your WordPress website
As I said, Website Defender presents me with an ‘easy-on-the-eye’, intuitive view of all the changes to files or file structure on my site, enabling me to see quickly whether anything bad has happened.
When you combine it with their full-site backup and restore functionality, available with Website Defender Pro, you will know as soon as you have a problem and, if necessary, you can delete your entire site and restore it from the most recent, clean backup.
That will have you back up and running again, with a clean site, with the minimum of hassle and delay.
Not only do you owe it to yourself (and a good night’s sleep) to put comprehensive security protection in place, you owe it to your site visitors.
After all, how would you like to be responsible for dumping malware onto your site-visitors’ computers? I certainly wouldn’t, and I take that responsibility very seriously.
Check out Website Defender now – when you combine it with the WP-Security-Scan plugin you’ll be setting up one of the most thorough WordPress protection systems around.