When you protect your website from hackers, you will have peace of mind because you know that your website is safe and can not be attacked by hackers.
I built a website for my client, and one morning I got a call from her that the website is not accessible, that is was saying 403 forbidden access, I thought it was maybe a plugin had issues and all I had to do was deactivate the plugin, So, decided to log in to my WordPress Dashboard and I couldn’t log in.
The funny thing is hackers do not want your website, all they do is just put in Malicious Softwares that will prevent your website or applications from functioning well.
Wow, I did not know what to do at that moment, So I decided to contact my website host provider, QSERVER and I was told the homepage of the website is missing in the database and that I need to upload it. Unknown to me that I never downloaded the homepage of the website. I had no idea how to do that.
I told the customer care that I do not have the homepage, the homepage is also known as the index.htm,index.html,index.php file. How to download my index.php file from WordPress. Sadly, I had to restore the website with the backup file I had.
Now, I will take you on a step by step process on how to protect your WordPress website from hackers. This is going to help you a lot, so follow the steps.
1. Get That Padlock On Your Website
SSL Certificates are very important to have on your website, not only does it protect your website from hackers, but it also tells visitors to your website that your website is safe for them to browse. The best Free WordPress plugin for SSL Certificate is Let’s Encrypt.
Not only because it is free, It very easy to install and alerts hackers that this is not a website to tamper with.
Lets Encrypt is always in most cPanel and all you have to do is click install, but I always advise to use the wildcard option.
The wildcard option allows every page on your website to have a padlock. While the just encrypt option will only show the padlock on the home page.
2. Strong Login Password
This is very vital when it comes to protecting your website. If a child can guess your website login details then your website is not safe. It is very free for hackers to tamper with it.
Some of my clients say having a long password is hard for them, that they would not be able to remember it. But that is what google is for, all you have to do is click on REMEMBER PASSWORD any time you want to login.
Tips for a strong password
- Never use your name
- Never use your date of birth
- Add numbers
- Add special characters like $%#@
- Let it be 8 characters or more
Trust me, when you do all of this, no one will tamper with your website.
3. Change your login URL
I will use WordPress as an example. Every WordPress website has /wp-admin/ at the end of the domain name. Everyone knows this, even hackers, so it would not be hard for them to guess your login URL and tamper with it.
In a WordPress website, if you want to change your login details, use WPS Hide Login to change your login URL. This plugin is very easy to use, all you have to do is change /wp-admin/ to something like /nomorehackers/…lol
4. Backup Your Website
When you back up your website, you are certain that you have every detail of your website in case of any damage. I use the All in One WP Migration Plugin for my WordPress Website.
All in One WP Migration comes in 3 categories, you can import a new website into the current one or export your website to your computer, and lastly for website backup.
You really need this plugin because it does all these for you at a goal, so you would not go through the stress of having to download different plugins just to do a job at a time. Now, this Plugin is free but it also has a premium version.
The free version is also very good as it helps with the essentials for just a website and if you are a company, I advise you to go for the Premium.
5. Get A Security and Firewall Scanner
Web Application Firewall identifies and blocks malicious traffic. Integrated malware scanner blocks requests that include malicious code or content. Also having a firewall protects your website from brute force attacks by limiting login attempts.
I use WordFence Security Plugin as my firewall scanner and have seen great results, the plugin checks your site for known security vulnerabilities and alerts you to any issues.
It also alerts you to potential security issues when a plugin has been closed or abandoned by just sending you a mail, once they notice any suspicious activities on your website. WordFence also checks your content safety by scanning file contents, posts, and comments for dangerous URLs and suspicious content.
These are free and easy ways to protect your website from hackers while you are sleeping. install the extensions on your website, please do not forget to activate them and they do the work for you.
Since I have been doing this on every website I build, I have never gotten a call from clients that their website is misbehaving and I decided to share with you all.
For more Articles