4 Ways to Thwart the Latest WordPress Hack
- April 12, 2013 12:00 pm
Have you heard about the highly-distributed global attack on WordPress installations? It’s affecting virtually every web host in existence. Due to the nature of the attack, memory consumption on targeted servers has increased. In some cases this has affected performance on the server end.
What does this mean for you, the web hosting customer? Simply put, we advise not to take this incident lightly.
To ensure that your WordPress website is secure, we recommend taking the following 4 actions:
- Log in to WordPress and change your password. We highly recommend you log into any and all of your WordPress installations and update your password. Choose a password that has both upper and lowercase letters, at least eight characters, and includes “special” characters (^%$#&@*). Need help? Check out our WordPress video on how to change your password.
- Enable CloudFlare (it’s FREE!) on your account. CloudFlare’s secure Content Delivery Network (CDN) is not only free for HostPapa customers, it has also already taken steps to mitigate the impact of this latest attack. So, if you haven’t already enabled CloudFlare on your account, there’s never been a better time to do so. Your website will be protected from malicious software and hackers with its cloud-based firewall. As an added bonus, it’ll also boost the performance of your website.
Instructions for activating CloudFlare on your web hosting account can be found here:
- Ensure your website doesn’t have malicious software. The good news is that there are options available for you if you want to check your website for malicious software in a hurry. The tool we’d recommend is Google’s own Google Safe Browsing. Just type this in your browser and add your domain to the end of it: http://www.google.com/safebrowsing/diagnostic?site=
For example: http://www.google.com/safebrowsing/diagnostic?site=yourdomain.com
- Back up your website. Make sure that you have a backup of your website. You can use plugins from WordPress to do so, but in this particular case, the WordPress attack is global and the plugin may not be compatible with your version of WordPress. HostPapa Automated Website Backup service will automatically back up your website and allow you to restore a previous version of your site with one click!