June 6

People Desperately Want To Hack Into Your WordPress

People desperately want to hack into your WordPress blog. I wish that I could tell you that this isn't true but it is.

Why do they want to hack your blog? Frankly, I just can't quite figure that out. There are activist hackers in the world and you can say that they are doing it for the betterment of or that they are just causing chaos.

Bonus: Download a free checklist of the first plugins that I always install on a new WordPress Blog. 

Then there are the hackers that I truly just can't figure out. These people seem to set up bots and with one purpose and that is to take down a site. These people are the ones that we are truly fighting against.

Thankfully, there are quite a few things that we can do to protect ourselves just a little bit more. A common type of hack is a brute force attack.

Brute-Force Basics as explained by How-To Geek

Brute-force attacks are simple to understand. An attacker has an encrypted file — say, your LastPass orKeePass password database. They know that this file contains data they want to see, and they know that there’s an encryption key that unlocks it. To decrypt it, they can begin to try every single possible password and see if that results in a decrypted file.

So here is one more step that you can take today to protect your blog. You can change the log-in page to something secret.

Use WPS Hide Login

  1. Install the plugin 
  2. Activate the plugin
  3. Go to WordPress Dashboard
  4. Click on General Settings
  5. Click on General
  6. Scroll down to the bottom and change your "Login url"
  7. Click on "Save Changes"

Important Tip: Make a note of what you changed your login page to and even consider bookmarking it. Whatever you do don't hide it from yourself too.

I find watching TV shows and movies about hacking to be a total blast but in reality, I want no part of it. My advice is to take each and every step that you can to protect your blog. Start by hiding your login page today.

Web Hosting

Tags

How to hide your WordPress Login Page, WordPress Security


You may also like

Let’s talk about revenue

Let’s talk about revenue

Are You Willing?

Are You Willing?
Leave a Reply

Your email address will not be published. Required fields are marked

  1. One of the biggest motivations for the kind of hacks that any of us are likely to see is profit. A malicious person might use your website to steer more traffic to their website that sells prescription medicine, or they might try to use your server to send out spam emails, for example.

    If there’s any silver lining on that motivation, it’s that they are aiming for low-hanging fruit, and they’re aiming for quantity, not you specifically. You don’t have to try make your website an invincible fortress (which would be impossible)…but if you follow steps like what Renee suggests here, you start to make your website a little more difficult to hack into, which is usually all it takes. These hackers don’t have time to try and dig into your website specifically — if their automated hacking tools can’t get in because you’ve made these changes, they’re going to move on and point their automated tools at the next website on their list.

    (Another big motivation is identity theft. If you are handling or storing any sort of personal data — passwords, credit card numbers, etc — on your website, you’ll want to dive deeper into how to keep that data secure.)

    1. Ron,

      You can create a really solid password. That would be your first step. I know that a lot of these plugins are not provided for WordPress.com sites but you also aren’t dealing with self-hosting. So that makes those sites a bit more secure. Pros and Cons….

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}

Get in touch

Name*
Email*
Message
0 of 350