Protecting WordPress Websites from Hacking
Website hacking reports on the nightly news in 2018 have become so common; they barely draw a yawn from many viewers. Website owners need to pay attention! It’s not just the mega companies and government websites that are targets of hacking.
Early adopters of the internet, many of which may have never updated their websites face a new more malicious world when they finally replace their outdated HTML websites with modern WordPress websites. WordPress’s worldwide use supporting the largest percentage of CMS-driven websites places any website built using the WordPress platform clearly in the sites of hackers.
New WordPress users may be surprised by the number and frequency of updates released annually, both for improvements and to shutdown newly found security exploits. Each new version of the WordPress core files is quickly followed by a flurry of updates from the thousands of actively managed plugins in order to maintain their compatibility. What website doesn’t use a contact form 7, Yoast SEO and WordFence security plugins as a bare minimum? Updating often seems never-ending!
As a webmaster educating new clients about the perils of the internet is not a task I take any pleasure in, least of all informing clients about the daily risks their very own websites are subject to. Advising clients to take the best available precautions is a responsibility we take very seriously.
In the earlier days of internet-connected-PCs, they often became riddled with viruses. Through the years we’ve learned to keep our PC software current with the latest releases geared more at closing security holes that allowed attacks than adding functionality and improving our user experience. We learned to install and constantly maintain Anti-Virus software to the latest annually released version. Connected to the internet these Anti-Virus programs automatically download the latest lists of viruses to help protect us from Malware infections which cause machine downtime and lost productivity.
Websites themselves are the targets of malicious activity today. Hackers exploit websites for many reasons. To send junk email and inject your website with pages containing links to low-quality websites. Infect your website so that anyone visiting your site is subject to having their PC infected. Hackers even hijack websites to commandeer the power of web servers to use in Bitcoin & Cryptocurrency mining activities.
What’s The Worst That Can Happen If I Don’t Keep My WordPress Website Up-To-Date?
The consequence of not updating your websites software is that the site may be hacked and compromised. In a worst-case scenario, to the point where you could have to rebuild your website. To date, we have not completely lost a website to hackers. We have had to manually clean up and repair several each year, over the past five years.
Once a site has been compromised it cannot only stop it from functioning… it can infect your website visitors PCs, harming your company’s reputation and expose sensitive data to the public. A hacked website can also place other websites hosted in the same shared hosting environment at risk, for this reason, serious providers will require you maintain your software monthly to the latest released versions.
The WordFence Security Plugin is installed in every WordPress website we build. Security plugins help keep hackers at bay but do not completely eliminate the risks. If your WordPress core software is outdated, WordFence may not stop attempts to exploit the holes in your websites armor. If your logins are Phished, it’s game on for the exploitation to begin.
For several years we have offered a full-service WordPress Management Program. While this service is ideal for busy clients with a budget to cover the monthly service fee, some don’t derive enough value from their website to justify more than minimal ongoing expenses. In these cases, an auto update plugin can be used to keep the website up-to-date.
Are There Any Risks To Updating WordPress on My Website?
There are some inherent risks with updates, they may not be compatible with one another. Conflicts can break your website and even shut it down. With our WordPress Management Program we check to make sure that post update, your website is still functioning and take corrective action when problems occur. We also maintain a full year worth of backups in case your site is hacked and either malicious software lies dormant and/or goes unnoticed for an extended period.
In the event the site would be broken as a result of an update, we can try to restore it from a local backup which is a standard part of our hosting accounts (a few daily, weekly and one monthly backup are stored). For those that opt for our WordPress Management Program, we also maintain 12 monthly backups off-site to have a deeper fallback ability to restore their sites in the event they are compromised.
More about WordPress, Web Sites, and Hacking:
To learn more about malicious activity on the internet and the risks for all websites including WordPress websites, you can read the articles you’ll find using the links below.
- Ask Wordfence: Why Is an Insignificant Site Like Mine Being Attacked? ( A March 2018 article directly addressing why your site is a target)
- Hacked: How Business Is Fighting Back Against the Explosion in Cybercrime (A 2017 Fortune article, see in particular the last paragraph “When it comes to hacking, a penny of offense can defeat a dollar’s worth of defense.”)
- 30,000 Web Sites Hacked A Day. How Do You Host Yours? (A short article on Forbes.com from 2013 that explains the situation well)
- HOW WORDPRESS SITES GET HACKED (AND WHAT TO DO ABOUT IT) ( A more in-depth article from 2016)
Today’s story on Site Pro News “Does Your Business Need an App? Likely Not.” confirms our long held beliefs concerning the APP world. Useful in some cases but a waste of time for your average business. You can add all of the functionality to a mobile ready, responsive website that your prospects won’t have to scale the download barrier to use. Win Win!
A good read if you’re considering an APP – Does Your Business Need an App? Likely Not.
Do you use a smartphone? So do your prospective clients! Today’s mobile phone users aren’t just making phone calls they’re searching the internet. With this in mind it appears that Google is adding “mobile readiness” to the already lengthy list of signals it evaluates to determine how to rank websites.
If your website isn’t already built to work across the myriad of mobile devices it’s not too late. Your website can be converted to a responsive mobile website that auto detects the viewing port size (screen size) of all your visitors and automatically configure itself for an optimal viewing experience. Better visitor experience equates to higher conversion rate of your site.
Not sure how well your site works on mobile devices? Visit this site Responsinator to see how your site works on phones and PADS, you may be surprised. Give us a call if you find your website doesn’t meet the new mobile responsive website design standards and we’ll help you understand the options available to make it mobile ready 717-569-2484.
Learn more at Site Pro News: It Looks Like Google Is Adding Another Ranking Signal
If you have a car you’ve probably made the experience of taking your car for service and finding out that it needs a new muffler bearing, fan blade or some other repair you had not anticipated, were not familiar with and had no idea what caused the failure. Well your website is no different., maybe even worse. You see the technology that creates the internet is changing at a fever pitch in the few years it has existed and with the advent of the Iphone back in 2009, came the need for Apple bearings. What is an Apple bearing you ask? An Apple bearing facilitates an easy smooth user experience for your website visitors when they arrive using one of the many mobile device used to access the internet today.
Did you know that 49% of Facebook visitors access their accounts from mobile devices? That 29% of all internet traffic is generated from mobile devices. How many of your website visitors arrive using a mobile device? If your website is more then 2 years old it no doubt was not fitted with Apple bearings when built. This because it was not the method of choice for building websites at that time. It may have a mobile component but no Apple bearings!
OK, there really is no such thing as an Apple bearing. What makes today’s best websites operate smoothly across all platforms is responsive website design . Visit the page and learn the details. Virtually every site we built in 2013 was responsive to mobile devices and it really makes a difference in how well your website works for your visitors and more importantly how it works for you converting mobile visitors into real live customers.
Speak with your webmaster today about upgrading your website to be responsive to mobile devices or give us a call at 717-569-2484 to learn more.
Launched about 9 months ago, Windows 8 has garnered sufficient negative press to think this w,as another Windows Vista. This week it was time for that always exciting time to upgrade the machines in our offices and new machines means new software. Now I’ve only be using Windows 8 for a few days but so far I can’t see what all the fuss is about. Seems like windows 7 with some goofy new icons and charms (that I’ve yet to bother much with).
What is lacking in the packaging is a simple card explaining “Windows 8 for Dummies” that would have gotten us past the first hour of guessing where to go, and how do you? Simple answers like how to display the desktop, search to start a program and a few other key items that would jump you past the hurdle that this new user interface places between you and your precious time on social media, Groupon and the like.
I’ve yet to see this new Windows bad side, I’ll keep you posted if and when it shows it’s face.
P.S. If your planning on a hardware upgrade I highly recommend you get at least a partial solid state hard drive. Working with PC’s these last 30 years was giving me flashbacks to my childhood back in the 60’s when we had to wait for our tube televisions to warm up before beginning to watch anything. In the 70’s we got our first instant on TV and it seemed miraculous. A solid state drive will bring you into the new millennium, no more waiting for your PC to start and super fast reboots. The time you save will quickly recover your investment.
- New Auto Repair Website Launched!
- Is your website keeping pace with Google?
- Web Design & Internet Marketing Infomercial
- New Dentist Website Design Launched
- 30 Second Infomercial
- One Sky Media Door Wars appears to have taken Over at Motor Mania TV!
- Hot Off The Presses – New Accounting Website for Longtime Client
- Commercial for Immediate Release
- Beautiful New Site as we Approach our 10th Anniversary Working Together!
- JUST LAUNCHED – New Mid Atlantic .90 Association Racing website design!