CodeinWP content is free. When you purchase through referral links on our site, we earn a commission. Learn more

Four Tips for Keeping Your WordPress Site Safe from Hackers

You spend time and money developing the perfect site: hiring a graphic designer, hiring a coder, considering colors and specifics that will make your company glow to potential customers. The site goes live and, within weeks, gets hacked.

It’s an all too familiar story. Some estimates show about 30,000 WordPress sites get hacked each day!

Why Do Hackers Hack Websites?

The reasons behind this are plenty. Sites that store a customer’s credit card information offer an easy target for criminals interested in committing fraud. Those with extensive email lists stored offer hackers with a massive amount of people to contact for their own interests. They may install malicious hardware on your computer so they can take over your computer and use it as is if were their own, thereby attacking MORE computers from YOURS.

And some hackers do it just for fun.

Before you put yourself out there on the Internet, make sure you’ve taken the following steps to protect your website – and your potential readers – from harm.

Create secure log-in names and passwords

WordPress itself  states your highest risk of being hacked comes in choosing a poor user name and password. When you create the blog, your default user name will be admin. Change this to something else. Also, create a password that won’t be easily detected. Do this by:

  • Using a variety of letters and numbers
  • Using upper and lower case letters
  • Using symbols, such as # and $
  • Changing the password on a regular basis
  • Choosing a user name that has nothing to do with your blog (ie: your blog is for North Carolina Real Estate – don’t choose NCreal for the user name)


Keep your WordPress site updated

On a regular basis WordPress will make updates and post that these updates are available on the Dashboard of your site. Update your site whenever it is suggested. Keeping WordPress updated will ensure you have the latest security features and that you are overriding any bugs that may have been in the earlier versions. This article shows what can happen when you DON’T update your site.




Check Out Two-Step Authentication

This great plugin allows Google to send you a unique number on your phone when you log into your account. Upon log in each time you will need to enter the secret number, sent to you on the Google Authenticator App on your smartphone. Because this program generates a new number ever thirty seconds, the chance of a hacker guessing that number correctly is next to impossible. Read more about this program on WordPress’s site.

Download and run MalCare

This plugin will scan your WordPress website or blog, check for vulnerabilities in security, and suggest actions to fix those. This includes information about your passwords, file permissions, database security and more. You can download MalCare’s free version from or you can purchase the premium version, which starts at $99. To install the tool, go to your dashboard, click on Plugins, and then choose Install New. Upload the entire folder and you will find it under your Installed Plugins page.

Or start the conversation in our Facebook group for WordPress professionals. Find answers, share tips, and get help from other WordPress experts. Join now (it’s free)!

Most Searched Articles

14 of the Best JavaScript Libraries and Frameworks to Try Out in 2020

In this post, we look at the best JavaScript libraries and frameworks to try out this year. Why? Well, with JavaScript being available in every web browser, this makes it the most accessible programming language of ...

50+ Best Free WordPress Themes for 2020 (Responsive, Mobile-Ready, Beautiful)

If you're looking for only the best free WordPress themes in the market for this year, then you're in the right place. We have more than 60+ such themes for you right ...

10+ Best WordPress Hosting Providers of 2020 Compared & Tested

Looking for the best WordPress hosting that you can actually afford? We did the testing for you. Here are 10 best hosts on the market ...

Handpicked Articles

How to Make a WordPress Website: Ultimate Guide for Beginners and Advanced Users Alike

Many people wonder how to make a WordPress website. They’ve heard about WordPress, its incredible popularity, excellent features and designs, and now they want to join the pack and build a WordPress website of their own. So, where does one get ...

How to Start an eCommerce Business From Scratch (In 10 Steps)

Is 2020 going to be the year you learn how to start an eCommerce business from scratch? You’re certainly in the right place! This guide will give you a roadmap to getting from 0 to a fully functional eCommerce business. ...

Scroll to Top