Do you use WordPress for your company website? If you do, you are going to want to ensure that you, at least, put in place a few simple security precautions to protect your site from hackers.
Currently, all hosting providers and users of the content management software WordPress, are potential targets of what is being called its worst ever coordinated brute force attack, as hackers attempt to gain control of WordPress blogs. Hackers reportedly are utilizing over 90,000 servers to compromise websites’ administrator panels by exploiting hosts with “admin” as account name, and weak passwords which are being resolved through brute force attack methods.
- Change your username: The first thing a brute force attack will do is try to crack your username and WordPress is ‘kind’ enough to let a bot know if the username is correct. If you are using ‘admin’ then you need to change it NOW!! Choose something that is hard to guess and that has nothing to do with either your domain name or what your site is about.
- Change your password: Make sure your password is strong. Use a combination of numbers, letters and characters.
- Make sure that you keep your WordPress installations updated to the latest version.
While WordPress like most things can never be 100% secure, if you make it difficult to crack then you are less likely to be a target and hackers will move to more vulnerable sites