It was Monday morning and I was on a call with a dozen others who are my peers. Each of us helps the small business owner with their businesses in one way or the other. It was at the end of the call and we were each sharing our websites and going over how to make little improvements here and there. Time was running out and there was just enough time for one more website review, I volunteered. As my site was coming up for all to see suddenly the screen turned a maroon red with an outline of a security officer with his hand stretched out and the words of"do not precede malware danger." There was more but I was horrified to remember exactly what it said. I was concerned on being destroyed plus humiliated the people on the call had seen me vulnerable, that I had spent hours.
I back my blogs using a free plugin WP DB Backup up. I can restore my blog if anything happens. I use my site to be scanned by WP Security Scan plugin and WordPress Firewall to block requests to fix wordpress malware cleanup.
This is fantastic news as it means that there's a strong community of developers and users who could further improve the platform. However, whenever there's a significant group there'll always be people who will attempt to take down them.
One step you can take is to delete the default administrator account. This is critical because if you do not do it, a user name which they could try to crack is already known by malicious user.
It's really sexy to fan the flames of fear. That's what journalists and bloggers and politicians and public figures do. It's have a peek here terrific for readership and it brings money. Balderdash.
These are three simple things you can do to maintain WordPress safe without plugins. Put a blank Index.html file in your folders, run your web host security scan and backup your whole account.