I love WordPress, for the very basic reasons which involve comfort of publishing, managing and securing your blog or work line online. While I have been using WordPress for over 4 years now, I have literally seen the guys at WP updating their platform, and bringing the best to users all over the world. It’s incredible how WordPress in no time has changed the way we create and look up to the wide web, enabling even the not so ‘tech-savy’ people to create their own business lines online. Creating and updating your blog or website using WordPress is one thing, and securing it from spammers and hackers is another, which most webmasters tend to forget. Recently HostGator announced worldwide security threat imposed on WordPress blogs where thousands of WP blogs were compromised and hacked. Of course we don’t want you to lose out on your blog or website, and here is a security measure we recommend you to take, to protect your WordPress blog against hackers and spammers.
The very basic step includes changing your password regularly. This is a well known security measure recommended by all major technology giants like Facebook, Google and Yahoo! and changing log in password regularly is one of the best practices you can follow. Next is to protect your blog against hackers which stand a level ahead from you, i.e they are familiar with attacks like Brute Force and Cross Script Injection. For that, we recommend you to use the following security plugins for your WordPress blog.
I have been using Wanguard on this blog for a while now, and the results are simply overwhelming. Wanguard is a security plugin for WordPress available for free of cost at the WordPress plugin store, and can be downloaded from the link below. It is a flawless plugin to combat spam user registrations on your blog just in case you allow multiple authors on your blog. The pluging communicates with its server which holds information of over 34,00,000 sploggers/spammers across the globe. So just in case one of them lands up on your blog, Wanguard will always stay on its guard to protect your blog!
Limit Login Attempts Plugin
This is just another plugin we recommend you to use, to make your WordPress blog secure and spam-free. Now there are times when some hackers attempt brute force attacks on your blog, trying all possible combinations of password on your blog log-in page. Limit Login Attempts plugin will block a particular IP address after it has entered wrong password for a pre-defined number of times. Then, the hacker will not be able to access your blog log in page until the next 24 hours from that IP address. For instance, somebody tried to log-in to our admin area this evening, however after failed attempts, this plugin automatically secured this blog from the hacker. Here’s a sample e-mail I received from this plugin:
16 failed login attempts (4 lockout(s)) from IP: 18.104.22.168
Last user attempted: admin
IP was blocked for 24 hours
The plugin is easy to configure, and let’s you decide the number of failed log-in attempts before it locks down the log-in page. Well, the plugin worked really well for this blog, and we recommend you to try it on your blog as well to protect your WordPress blog against hackers and spammers.