{"id":343,"date":"2019-09-08T12:12:03","date_gmt":"2019-09-08T12:12:03","guid":{"rendered":"https:\/\/www.hostingahead.com\/blog\/?p=343"},"modified":"2021-12-13T13:23:41","modified_gmt":"2021-12-13T13:23:41","slug":"best-practices-to-secure-wordpress-websites","status":"publish","type":"post","link":"https:\/\/www.hostingahead.com\/blog\/best-practices-to-secure-wordpress-websites\/","title":{"rendered":"Best practices to secure WordPress websites"},"content":{"rendered":"<p>You might know that WordPress websites get hacked often and of course, it is not easy to find the root cause.\u00a0 If you have time, it&#8217;s worth reading the article <a href=\"https:\/\/sucuri.net\/reports\/2017-hacked-website-report\/\" target=\"_blank\" rel=\"noopener\">https:\/\/sucuri.net\/reports\/2017-hacked-website-report\/<\/a><\/p>\n<p>As we know installing WordPress and setting up a simple site is easy in WordPress.\u00a0 Even non-techy people can do this after watching a few videos from Youtube. The main problem here is that they build the site and forget about the security side.\u00a0 As a customer, he needs the site and they are not aware of what is happening on the backend and often comes back to the developer when the site is hacked.<\/p>\n<p><strong>Here are a few good practices to prevent WordPress hacking.<\/strong><\/p>\n<p><strong>1) Use a reputed theme with proper updates.<\/strong><\/p>\n<p>Don&#8217;t go behind free themes unless these are from good vendors. You should check the theme properly before it goes to production. If you have the budget, go for vulnerability scanning.<\/p>\n<p><strong>2) Uninstall all unused plugins.<\/strong><\/p>\n<p>This is the biggest mistake developers do normally. They install a lot of plugins even if it&#8217;s not required during the development stage and forget to clean before it goes to production.<\/p>\n<p><strong>3) Rename wp-admin URL<\/strong><\/p>\n<p>The default wp-admin URL is familiar to everyone and anyone can access it from anywhere. So it&#8217;s good to rename the wp-admin URL to a complex one.\u00a0 There are a lot of plugins available to manage this.<\/p>\n<p><strong>4) Install the security plugin and configure it properly.<\/strong><br \/>\nThe are several security plugins available that can be installed to block certain kinds of WordPress attacks. Wordfence (https:\/\/www.wordfence.com\/) is the best plugin that you can use.<\/p>\n<p><strong>3) Use the latest PHP versions<\/strong><br \/>\nAlways use a stable PHP version. You should ensure that your theme\/plugins support the latest PHP before enabling it.<\/p>\n<p><strong>4) Check all admin users and disable\/delete inactive users.<\/strong><br \/>\nThere could be a lot of unwanted users and go and remove \/deactivate it.<\/p>\n<p><strong>5) Update WordPress<\/strong><\/p>\n<p>You should update WordPress, theme and all plugins regularly.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>You might know that WordPress websites get hacked often and of course, it is not easy to find the root cause.\u00a0 If you have time, it&#8217;s worth reading the article https:\/\/sucuri.net\/reports\/2017-hacked-website-report\/ As we know installing WordPress and setting up a simple site is easy in WordPress.\u00a0 Even non-techy people can do this after watching a &#8230;<\/p>\n","protected":false},"author":101012,"featured_media":176,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[27,9,40],"tags":[],"_links":{"self":[{"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/posts\/343"}],"collection":[{"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/users\/101012"}],"replies":[{"embeddable":true,"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/comments?post=343"}],"version-history":[{"count":9,"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/posts\/343\/revisions"}],"predecessor-version":[{"id":352,"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/posts\/343\/revisions\/352"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/media\/176"}],"wp:attachment":[{"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/media?parent=343"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/categories?post=343"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.hostingahead.com\/blog\/wp-json\/wp\/v2\/tags?post=343"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}