Musubu IP Threat Blocker Review: A Simple WordPress Firewall
If you want to secure your WordPress site, a firewall is a great way to stop malicious actors before they can damage or spam your
January 14, 2020 No Comments
3 Best VPN Services For WordPress Users: ExpressVPN vs NordVPN vs SurfShark
If you are on the internet, you are very much vulnerable to security attacks, hackers, and threats no matter what. The Internet is filled with
November 14, 2019 No Comments
Security Ninja Review: An Easy-to-Use WordPress Security Plugin
If you’re not paying for a premium managed WordPress host, it’s very likely that you’re the only thing standing between your WordPress site and malicious
September 16, 2019 No Comments
8 Best WordPress Security Plugins to Lock Down Your Site
Looking for the best WordPress security plugin to lock down your WordPress site? In this post, I’ve collected eight of the best plugins that offer
August 20, 2019 7 Comments
6 Best WordPress Anti-Spam Plugins to Stop Spammers in Their Tracks
By the latest numbers, WordPress powers about one-third of all the websites on the Internet. And while that’s great for the WordPress community, it also
July 29, 2019 6 Comments
How to Add Two-Factor Authentication to WordPress (Best Plugin)
It’s a scary world out there, and lots of people would love to get their hands on your precious WordPress login credentials. That’s why, according
July 10, 2019 1 Comment
How To Fix WordPress Mixed Content Warning (Easy Step-by-Step Guide)
Did you just move your WordPress site to HTTPS only to be met with some weird mixed content warning instead of that beautiful green padlock
November 9, 2018 5 Comments
Integrate SSL on WordPress Multisite
WordPress multisite is an extraordinary feature that let you manage a network of WordPress sites using a single admin site. WordPress users follow various techniques
July 30, 2018 2 Comments
WordPress Malware Scanner: How To Scan WordPress For Malware
So you’re worried that your WordPress site picked up some malware, huh? There are all kinds of reasons people might want to infect your site
July 18, 2018 No Comments
WordPress Malware Removal: Your Options To Clean Your WordPress Site
So your WordPress site has malware…what do you do? Well, obviously you need some WordPress malware removal help! This isn’t a “do it yourself manually” post.
July 11, 2018 1 Comment
Free SSL Certificates – Where to Find Them and How They Help
Want to learn how you can improve your search engine rankings, secure your visitors’ browsing, and boost your website’s trust…all for free? I know – that’s a bold statement. But I promise you that these free SSL certificates really can give you all of those benefits.
February 1, 2017 6 Comments
Why is SSL Important for Your Site Security?
SSL stands for Secure Sockets Layer. It is an encryption-based technology to securely exchange of information between a website and visitor. Aside from encrypting the data exchanged, it also ensures the authenticity of a website to your visitors. Millions of websites use SSL for website security. It is an integral element of website security. If you care about site user experience and security, you need SSL — it’s really that
December 7, 2016 3 Comments
How to Keep an Audit of Your WordPress Security Logs?
Every now and then, WordPress websites break. They also get hacked, defaced and infected. There are numerous WordPress-driven sites that become a target of malicious
November 14, 2016 No Comments
Is the Free SSL Certificate from Let’s Encrypt Safe?
Is the Free SSL Certificate from Let’s Encrypt Safe? Short answer? Yes! Every day visitors share sensitive information with many different websites. Details as important
October 5, 2016 7 Comments
What to Expect from a WordPress Security Solution/Provider
There are so many WordPress security solutions and security providers in the market that one has to struggle hard to find and settle with one. There are a lot of things that a security solution or a provider should take care of. This post is about what users need as a security solution. What are they ready to pay for. I am writing this post with three kinds of people in mind.
September 30, 2016 2 Comments
Detecting and Removing Backdoors From a Hacked WP Website
Having your website hacked is not a pleasant experience. If you open your site and are being redirected to inappropriate sites, traffic plummets, getting blacklisted by search engines, browsers, and major antivirus software all point to one common thing; that is your site is hacked.
September 29, 2016 1 Comment
Addressing the WordPress Is Not Secure by Default Argument
WordPress being an open source script has its code publicly available. It means anyone willing to contribute can build on top of others’ work. This is how WordPress software gets developed. The WordPress security team cannot always be on top of security vulnerabilities because it is difficult to address something which is not even discovered yet.
September 27, 2016 1 Comment
The Complete Beginner’s Guide to Fix Hacked WordPress Websites
More often than not, I get to read about certain data loss horror story from WordPress users. “I was about to publish an article when my website crashed — I was unable to log in! Now I can’t get my data back no matter how hard I try!” Or, more relevant to the WordPress, “I was scrolling through my site logs where I noticed an unusual traffic spike or an overwhelming amount of spam content.” These are the pretty obvious signs of a hacked website, and something needs to be done about it.
September 26, 2016 2 Comments
WordPress Hosting Related Security Measures
Security is of paramount importance for any website. One tiny loophole may cripple a years’ old popular website. Do you know that over a quarter
September 24, 2016 No Comments
Is Removing the Fact Fact That You Use WordPress Helpful?
Securing WordPress may sound like a topic being fairly covered across the web but, is that really the case? Here’s what I mean; I’ve scrolled
September 23, 2016 3 Comments
How to Secure and Optimize WordPress Database?
WordPress is a tremendous open source script. It requires MySQL and PHP to function. PHP works by retrieving information from the database to display on
September 22, 2016 1 Comment
Securing WordPress Websites Against Brute Force Attacks
With hackers, intruders, and spammers ever-ready to attack, security is a top concern for WordPress sites. Bruteforcing through your login credentials is the most tried
September 21, 2016 No Comments
Scanning Your WordPress Websites for Security Vulnerabilities
In the previous article, I talked about the 5 Best WordPress Security Plugins and Solutions. You should check out that article before reading this one since they are both connected. What if you need to go beyond normal scanning plugins? This article is targeted towards intermediate users (let’s call them WP Super Admins who manage the clients’ WP websites for a living) and WordPress developers.
September 20, 2016 4 Comments
All You Need to Know About WordPress Security Keys and Salts
Protecting sites against brute force attacks is the fundamental step of WordPress security. In the previous article, you learned about ways to prevent hackers from brute forcing the login page. WordPress security keys and salts offer yet another solution to improve and harden your site security.
September 19, 2016 7 Comments
WordPress Admin Area Security Best Practices
The backbone of any website is the administrative area and in fact, the most intriguing zone for hackers. Whenever you install WordPress, it creates a password protected administrator user which has access to the admin dashboard; which btw is hidden behind a login page.
September 16, 2016 5 Comments
Why Is WordPress Website Security Important?
How alarming is it to receive an email about an unauthorized login attempt to your WordPress account? Do you even have a WordPress login notification setup? Don’t worry that’s about to change; Daan Tol (owner of WPLift) got in touch with me, and we had a long conversation about WordPress security. Both of us knew that WordPress security is one of the biggest concerns for WPLift visitors. That’s why I have decided to start writing a series about WordPress Security. In this series, I will talk about everything you need to know and more about securing your WordPress website.
September 15, 2016 1 Comment
Free McAfee Secure Plugin: Show Visitors Your Site is Secure & Display a Trustmark
Displaying Trustmarks on your site is a proven way to reassure website visitors and increase conversions, landing on an unfamiliar website for the first time
June 24, 2015 No Comments
How to: Prevent Bruteforce Login Attacks on Your WordPress Installation
We recently suffered a brute force login attack on one of my servers which was causing some sites to be unreachable and the server load
December 16, 2014 6 Comments
The Missing Component in Your WordPress Security Strategy – Audit Logs
WordPress websites have become a popular malicious hacker target. We have all seen it in the news – thousands of WordPress websites get hacked overnight.
October 15, 2014 4 Comments
How To: Completely Hide the Fact You Use WordPress for Your Website
WordPress users love this platform because it’s free, has a huge community, it’s powerful, flexible, and meets the needs of most people building websites today.
April 16, 2013 18 Comments
9 Easy Steps to Improve Your WordPress Security
Step 1: Audit Overall Work Station Security First of all, make sure that any and all PCs and web servers you use are kept properly
January 9, 2013 4 Comments
How To: Completely Protect Your WordPress Website with Sucuri
We have talked about WordPress Security quite a bit lately. Since WPLift has become well-known and traffic has gone up, so too unfortunately have people
September 27, 2012 4 Comments
A Closer Look at WordPress Password Hashes
Like many web applications, WordPress stores user accounts in a MySQL database, including administrative user accounts with their associated password hashes. A closer inspection of
September 21, 2012 1 Comment
The WPLift Guide to Strengthening Login Security in WordPress
In a previous post on WordPress security best practices, we discussed ‘Security by obscurity’, which means that you should obscure the most commonly known paths
August 22, 2012 5 Comments
How to Investigate and Remove Malware From a Hacked WordPress
As one of the most commonly used Web Publishing Platform, WordPress is often targeted by malware, trojans, code injection and other evil things on the
June 20, 2012 11 Comments
Maintain Killer Security on your Blog by using one WordPress Plugin
The importance of a secure blog can never be under-estimated – Securing your website allows you to make your readers/visitors/clients feel safer. Why risk damaging
April 13, 2012 13 Comments
WordPress Security: Best Practices, Free & Premium Plugins
WordPress is an easy to use, quick to learn, and secure content management system. However, just like any popular software, it is also targeted by
March 14, 2012 8 Comments
