Design, CG Graphics & Inspiration

Tips for Protecting Your WordPress Site

With the increasing cases of hacking in the blogosphere, security has become a greater concern for owners of WordPress sites. Taking appropriate security measures can make all the difference between losing all your data and recovering it. Though it is not possible to make your site totally secure, you can lower the chances of hackers getting access to it.

Here are some tips which will enhance the security of your WordPress site.

1. Back up everything frequently

Though this might seem like something obvious, many people don’t take backing up very seriously. However, failing to back up frequently leaves you vulnerable to losing all your data when attacked by hackers. When it comes to securing your site, the first step you need to take is to select a hosting provider whose packages include automatic backups. Whenever you site comes under attack, your provider will be responsible for recovering your data. Other backup solutions you could consider are Backup Scheduler and VaultPress which are plugins offered by WordPress.

2. Update everything

It is very important to keep your WordPress themes and plugins updated. Anything that is outdated makes it easier for hacker to gain access into your site. Even plugins and themes which have been deactivated need to be updated on a regular basis to keep your site secure. A better option would be to simply delete all the plugins and themes which are outdated. You can use a tool such as ‘Plugin Last Updated’ to keep track of when plugins were last updated.

3. Think of a strong and unique password

A strong and unique password is very important when it comes to the security of your WordPress site. Having a password which is made up of predictable number patterns or recognizable words will make your site more vulnerable to attack. In an effort to access your site, hackers will try all kinds of password combinations. Therefore, to enhance your security, choose a password which is unique and random. However, avoid using the same password across multiple sites or accounts. It would also be advisable to alter your password periodically.

4. Install plugin protection

WordPress offers a wide range of plugins which can enhance the security of your site. These include Wordfence Security, Cloudflare Threat Management, Botnet Attack Blocker and Login Security Solution. These plugins come with security features such as enhanced login security, firewalls, anti-virus scanning, malicious IP protection and malware scans. To boost your security, it would be advisable to go for the premium versions.

5. Alter the default profile

Once you have installed WordPress, it is important to immediately change the default ‘admin’ profile. For instance, you need to change your username from ‘admin’ to something more unique and less predictable. Using the default username will make it much easier for hackers to get access to your site. In addition, you need to change everything that is linked to the default profile. Though this might be a very time-consuming process, it will in the long run greatly enhance the security of your site.

  • Charles Mburugu,
  • October 22, 2013


Charles Mburugu is a professional blogger who likes sharing tips for internet marketers and bloggers. Currently, he is writing for

Subscribe for the hottest posts

Subscribe to our email newsletter for useful tips and freebies.