3. WordPress Security
WordPress is the most popular Content Management System on the web and is now
powering over 26.5% of all websites. Since it holds such a large piece of the market
share; it brings additional security concerns and increases your risk of attack when
vulnerabilities are discovered.
In 90,978 attacks /minute, hackers are attacking to WordPress security sites. There
are some ways you can take care of your site.
4. WordPress Vulnerabilities
According to WP Scan, a black box WordPress vulnerability scanner,4618 vulnerabilities (2,355
unique) there are have been reported to date.WordPress plugins vulnerabilities 52%. WordPress 37%
for core account and 11% for theme account. This has also been confirmed by Wordfence findings
where they discovered that 55.9% of vulnerabilities came from plugins.
We took a look at the plugin repository and discovered the following:
● There are currently a total of 37,300 plugins available in theWordPress.org repository
● 17,383 of those plugins have not been updated in the past 2 years.
● 13,655 plugins have a compatibility tag of 3.x. WordPress 4.0 was released in September 2014.
5. ITHEMES SECURITY
ITHEMES security is an iThemes Security plugin that claims to provide 30+ ways to secure and
protect your WordPress website from hackers attacks. It strengthens user credentials by fixing
common vulnerabilities and automated attacks. The plugin is available in both free and
premium versions.
iThemes covers all of the following:
● Two-factor authentication
● Brute force protection
● Monitoring core files for any changes
6. ALL IN ONE WP SECURITY & FIREWALL
All In One WP Security & Firewall is a user-friendly interface for those who are not familiar with
advanced security settings. The latest techniques and security measures for checking
vulnerabilities to plugin protects your website.
The useful feature for WP Security & Firewall is a meter on your dashboard that gives your site
secure it is.
It also has a security scanner that keeps track of files and notifies you of each change in your
WordPress system. It can also detect malicious code in your WordPress website.
7. BULLETPROOF SECURITY
Another popular plugin that helps to secure your WordPress website is BulletProof Security. This
plugin provides single click security solution. It secures your website against RFI, XSS, CRLF,
SQL injection, and code injection hackings.
The full list of features included with BulletProof security is too long to list, but here are a few:
● An easy single-click setup
● A record of the number of login attempts
● File monitoring and quarantining of uploaded files
● Email alerts for a variety of user actions