Creating your online home is exciting and can be a big gamechanger in growing your coaching practice. Unfortunately, there are some people who aren’t as interested in improving the world as we are. These people don’t use their powers for good.
Raise your hand if your website has ever been hacked. My hand is raised; how about yours? Unfortunately about 30,000 websites get hacked per day according to a report done by Sophos Security. Hackers are not picky and will go after any site they can find. It doesn’t matter how big or small your site is or how much or how little traffic you get. If it can be compromised I promise you a hacker will find it sooner or later.
If you use WordPress to run your website you have several options to help prevent any hacking that may occur. Of course no person or software can completely guarantee that your website will never get hacked. Sorry, but it’s true. However, there are ways you can limit your changes of being exposed and prevent hackers from gaining access to your online home.
One of the most popular WordPress security plugins available is Sucuri. I like Sucure because it offers a free and a premium version of their service. The free version is very solid and has most of the features you will need.
Notable Sucuri features include:
- Security notifications
- File Integrity Monitoring
- Remote Malware Scanning
- Blacklist Monitoring
- Effective Security Hardening
- Security Activity Log
To help prevent hacking of your website Sucuri has many options to harden your site. Some of these tasks include not allowing PHP files in your uploads directory, which is where any files you upload through the media library are found. It also makes the WordPress version you are currently running hidden so that it is not easily found. This is important because hackers can use the version number to figure out known bugs and use those bugs to compromise your site.
File integrity monitoring is important because it will alert you when files are edited. Unless you are directly editing or updating a theme or plugin, there is no reason for a file to be edited or changed. Most hackers inject malicious code into PHP files and when that code is ran it cause havoc. With file integrity monitoring if any malicious code somehow gets added, you can stop it in its track.
The security activity log is a great tool especially if more than one person is working on your website. This tool logs every move a person makes in the administration area. If someone edits a theme file, it’s logged. If someone installs or deactivates a plugin, it’s logged. It’s a great way to see what people are doing on your website.
What good is all this monitoring if you don’t know the results? Sucuri has security notifications that will alert if something suspicious is going on so you can take appropriate actions.
Sucuri also has a web security blog that you should read to help keep you up-to-date on the current security trends and the best ways to prevent hacks.
A lot of this may sound confusing, but securing your WordPress site is so important. You rely on your website to produce income for your business and to be your online home where clients can discover you, you don’t want to open the door for it be compromised.