At A Glance: How To Secure Your WordPress Site [Infographic]
Securing your self-hosted WordPress site is absolutely essential. That's the reason for our continuous coverage of this particular topic throughout the years. With WordPress becoming more and more dominant as the motor of today's web, the topic stays at the top of our advice list. Throughout the last four years, the number of WordPress blogs having been hacked has more than doubled from 81,000 to over 170,000 per year. The fresh infographic by WPTemplate.com aggregates everything you need to know to properly secure your site and gives you a decent hint sheet to always keep your eyes on.
WordPress Hacks: Where, How and What to do Against Them?
Two hands full of basic tips help to keep you out of the biggest trouble. Some are things you could have easily guessed, such as keeping your installation updated or regular backups, so that you'll not lose your whole content in the worst case. Some tips are less self-evident, such as securing the folder wp-admin or omitting the user-name admin.
The following infographic has all these hints and some more nicely arranged. I like the color-coded presentation, that shows you where the most and most dangerous security threads lurk.
At a glance you'll notice that weak passwords are a threat, yet they are far from being the most common reason for hackers to succeed - only 8% of all hacks use weak passwords as the entry. Much more relevant as flood gates are plugins and themes. More than 50% of all hacks are possible exploiting security vulnerabilities in common themes and plugins. Themes (29%) are even more relevant than plugins, so be careful what you fall for.
The single biggest security weakness, with 41% of all hacks, is related to questions of hosting. We need to care for problems of database security, encryption, file-permissions, folder-access, securing the network on protocol level and much more. The average WordPress blogger will want to hire an experienced system administrator and is highly advised to actually do so.
WordPress: Almost 70 Million Websites Worldwide
Some information of statistical nature rounds up the infographic. In terms of security you'll get reminded of the botnet attack on WordPress sites in April 2013. More than 90,000 servers performed brute force attacks and were quite successful in doing so. WordPress is still growing fast and today powers more than 17% of the world's websites, which adds up to the fantastic value of almost 70 million websites.
The following infographic has been scaled down to fit into our little magazine. If you want to have a larger view or actually do want to print it out for bedside purposes, click on the graphic. We will then transfer you to WPTemplate.com, where they have a larger version for you:
(Source: WPTemplate.com)
Hello,
Its a very nice article on wordpress security. I think wordpress is secure CMS, but you have to take some steps to secure it; because wordpress’s ease millions of people are using it.
To secure my sites, I always change wp-admin or wp-login to something else, I always install Captcha plugin, I always dis-allow to edit files on wordpress, I always change database prefix from WP_ to something else, I always install Login Attempts plugin, I always delete un-use able plugins (Hello dolly etc), I always update wordpress version and plugin versions — when available, So my sites are never hacked.
Thanks again for this info-graphic article — I liked it.