Has your website been hacked? Has someone broken in to your Facebook account? It’s a sickening feeling to drop by your site to see an unfamiliar screen blinking at you, demanding money, information or worse.
Thankfully, even though hackers and fraudsters are becoming increasingly more sophisticated in their methods, we are able to protect ourselves with some basic housekeeping chores.
Like keeping weeds out of the garden or pests out of the home, we can ensure our online safety and security by establishing some simple protocols and following the best practice procedures as advised by the experts.
Step 1. Identify a panel of Security Experts
I’m no security expert, so instead of devoting 12 hours a day, 7 days a week learning everything there is to know, I have appointed myself some expert Security Advisors. (Then I can just follow their advice and get on with the things I’m good at, or prefer to do.)
Turns out the clever people at iThemes.com have bought one of the best WordPress security plugins available, employed it’s creator and made it available in a bundle for new and existing iThemes customers.
Also watch out for their free eBook : WordPress Security – A Pocket Guide.
Notice that I said “panel of experts”. Firstly, this is important in diversifying the risk that any one source may have missed something. Second, you may also have access to a range of experts, each with their own area of expertise that is valuable to you.
Step 2. Take a moment to look over their blog and Subscribe for updates
These are the guys whose business it is to be on top of the latest security threats, best practice preventions and news that impacts website owners. Subscribing to their updates ensures the news is delivered right to you, and probably much sooner than any other news channels you may happen to follow.
The blog archive often details previous threats, and is designed to educate potential customers about current threats, (and all the reasons why you need their product.)
You don’t have to buy their product to benefit from the knowledge freely available on their blog.
Step 3. Get the basics covered
Whilst you may well benefit from a paid security product on your site, you can also stay ahead of most threats by following some basic things:
- Maintain the latest version of WordPress
- Maintain regular back ups
- Delete ‘admin’ user
- Block multiple incorrect login attempts
Remember, no plan is a plan to fail…
Without dedicating some time to covering a basic security plan, it’s just a matter of time before you run into trouble. And when you do run into trouble, I can guarantee (from personal experience) that you’ll regret not having done something sooner.
But you’re reading this, so you’ve already part way there!
Now all you need to do is implement the basics…
ps. Although I use and recommend iThemes Security Pro, I do not receive affiliate payments or other rewards for recommending it. This article contains my own opinions, and are not in any way affiliated with iThemes.com.