How to secure your WordPress website
Milou de Kleijn, January 26, 2018
You are perfectly satisfied with your WordPress website. It looks great, runs fast and people constantly tell you how pleasant it is to use your site. What about the security of your website, however?
Fortunately, there are several ways to secure your website and protect against the dangers. A few simple measures will go a long way.
Encryption with SSL certificates
With SSL security, you encrypt your data before sending it via the internet. This ensures that only the intended recipient can access your information; it is kept hidden from people or computers who might intercept your data. By using SSL, you can give visitors of your website the assurance that even if their data is intercepted, it cannot be accessed by malicious third parties.
Use the sFTP protocol when sending files
The sFTP protocol facilitates secure file transfer. As with SSL security, the information is encrypted during the transfer process, which means third parties cannot access the data. You can read more about using the sFTP protocol in our knowledge bank.
It is important to make sure that both the WordPress core and any plugins and themes you use are up to date. Developers still regularly discover vulnerabilities in the software. If you use our Warpdrive plugin, you can customize WordPress’ auto-update settings to your liking. Security risks in plugins and themes are often only discovered after their release. It is therefore important to implement the latest update as soon as possible. Savvii makes this process easier by also automatically completing these updates.
Use strong passwords
It may seem obvious, but some people still tend to underestimate the importance of using strong passwords. You should choose a password that is hard to guess, so hacking your website is made more difficult. Do not write down your passwords and do not make a list of your passwords in Word. If anyone should ever acquire this file, they would gain access to a wealth of information. A useful tool for saving and generating passwords is LastPass. You can use this tool to encrypt and decrypt your data at the device level.
Adopt the least privilege principle
The least privilege principle helps you prevent hacks. By only providing account access to the people who need the information in question, the risk of user data being hacked is kept to a minimum.
In our checklist we give you many more tips on how you can improve the security of your WordPress site:
Secure your WordPress website with Savvii
Of course, we at Savvii do everything we can to prevent your website from being hacked. Once a day, we conduct a scan to detect any malware and viruses. On top of that, we employ Brute Force prevention measures, a firewall and automatic updates and we clean up malware for you.
Security Plus Package
With our Security Plus Package, the security of your WordPress website will be even better. We scan and monitor e.g. dangerous requests and the modification of information more frequently. The Web Application Firewall, the Intrusion Detection System and Emergency DDoS protection ensure that dangerous requests, user agents and aggressive bots are detected. All alerts are forwarded to us. This means you will not be bothered by false alarms and it allows us to respond quicker in the event of an actual security breach.
Check out if your websites are safe enough! By following our free WordPress security checklist, you’ll make sure your websites are secure.