WordPress is one of the most popular platforms to host your own website or blog. This is because of the simplicity that WordPress brings and the innumerable number of options it gives you from themes to plugins. Even a person who is not aware of the amount of scripting and coding that goes into making a website can use WordPress. However, with so many using the WordPress platform, there is also a chance that your website may get attacked by a hacker or malicious software.

Here are a few tips to best protect your website.

WordPress Update

Constantly update your website with the latest WordPress version. Like any technology, there are always potential security holes in the WordPress coding that could allow a hacker to sneak through. A WordPress update adds changes that plug those security holes and adds security layers to the site.


Believe it or not, your website is most vulnerable by a hacker guessing the right password. Today, over half the hacking on the internet is responsible because of the cracking of the password. Hackers attempt to crack into your website by randomly guessing your password. Don’t ever keep your password as your birthday or spouse name or anything that can easily be guessed. These are things a hacker checks for first.

Make certain you have a strong password which is over eight characters and has numerical and alphabetical characters as well.

Error Message

Every time you type in the wrong username or password, an error message appears. You want this error message to be as generic as possible. An error message that is specific could give valuable information to a hacker who is using a random method to hack through. You don’t want your error message even specifying whether the password or username is wrong.

Don’t Look Brand New

When you update your WordPress website, avoid looking brand new. A website that looks brand new will immediately give away the WordPress version. Such information will greatly help a hacker utilise any security holes in the WordPress version. You can do this by altering the meta generator tag in your template. Search for ‘wp-content/{name of your WordPress theme}/header.php’ and remove it.

Security Plugins

Adding a security plugins is one of the best ways to protect your website. It will constantly watch over your website and run frequent scans to make sure that your site has not been tampered with. A good security plugin will insert a code into the website which will alert the plugin if any unauthorised internet user is making any changes. Better WP Security is the most basic security plugin you should have. A good security plugin will in no way hinder the speed of your website.


From time to time, you should run scans on your website. These scans will test the security strength of your website and present a detailed evaluation of your website security. You will find out various security loop holes and the scan will suggest ways to improve your site’s security. Scanit Browser Security Check and Browserscope are two scanners you should check out.


Always back up your website. Consider this as a failsafe system, in case your site catches an incurable disease. In such cases, a backup means that all your data and user information will be saved and can be reloaded onto a refreshed website.

WordPress Security Plugins To Increase Your Security

– Stealth Login

– Login Lockdown

– Chap Secure Login

– Backup WordPress

– Secure WordPress

Local Companies

Rapid Boost Marketing provides free website security analysis for businesses.