Does your Kyle, TX business use WordPress and host with GoDaddy? Uh-OH!
Kyle, TX - November 29, 2021,
If your Kyle, TX business’s #WordPress website is hosted with #GoDaddy, you must take these urgent actions now. One of the most popular hosting providers globally, GoDaddy has been around for a while and has many satisfied customers. However, it is important to know that they are not immune to security breaches or hacking attempts. We will go through some actionable steps you can take to make sure your WordPress website remains safe and secure at all times.
1. Secure your site's login pages
This one should be obvious. If people can't log in securely on your site, then there isn't much point in having a password-protected area (or any other protected part). You need to ensure that the login pages are secure.
Login pages that can be intercepted by hackers or malware will pose serious security risks. Make sure that you use strong password or even better a pass phrase. s for these pages and ideally encrypt them with SSL encryption as well. Another important point is to ensure that your users do not habit reusing the same login credentials on different websites. If they don't, then attackers will most likely go after these accounts instead of yours because there's less risk involved in attacking an account with similar passwords used elsewhere.
2. Keep your WordPress core files secure.
These are the files that you download when you first install WordPress. They contain all of the code needed to run and manage your website, so it is extremely important to keep them away from hackers. First things first, if someone gets into these files, then they can inject their malicious code, which will cause problems downstream. It will give them ability to take over your WordPress site completely. Second, suppose people get access to these files. In that case, they can modify things like the plugin and theme list or even tamper with settings that control important components of your website (like email notifications). Third, attackers can replace all of the WordPress files with their malicious versions. When you log in to your website, instead of seeing it in all its glory, hackers will show a page that looks identical but runs code on their servers. The best way to secure these important files is by using some form of version control (more info here). This ensures that it is automatically stored in your repo every time you download a new version of the WordPress core. This makes sure that even if someone does get into these files (which isn't very likely), they won't be able to tamper with them because you're constantly downloading fresh copies. Another positive side effect of using this technique is that you can compare the changes between your old files and new ones every time you update WordPress. This gives you a chance to make sure that no one has tampered with anything. Many hosting providers charge extra for this service so it is best to host these core files on another server.
3. Keep your plugin files updated and secure
Plugins are simply bits of code that add new functionality to your website. Think about Popular Social Media Plugins or SEO plugins - these allow you to quickly and easily share content on social media platforms. These can inject their malicious code, used when someone visits a site running the plugin. It's not likely since it requires access to go through each file but still a valid concern. The best way to protect these files is by using a version control system. This ensures that every time you update the plugin, all of the changes are stored in your repo and make it easy to see if someone has messed with something (more info here). Many hosting providers charge extra for this service, so it's better if you can host your plugin files on another server. A valid concern with plugins is that they allow users to upload custom images and code snippets which will be used to inject their own malicious code into your site when someone visits a page running the plugin. It's not likely since it requires access to go through each file but still a valid concern. The best way to protect these files is by using a version control system. This ensures that every time you update the plugin, all of the changes are stored in your repo and make it easy for you to see if someone has messed with something