Want to chat?: 0114 276 3736
St. Marys Church Bramall Lane Sheffield S2 4QZ View on Map
Sheffield WordPress Security

sheffield wordpress security

Sheffield WordPress Security

Sheffield WordPress Security Advice

Wordpress is a superb system for website development, allowing complex functionality, including full eCommerce without huge development costs.

The platform is about as future proof as you can get, is built with good SEO in mind and allows full content management for the site owner once built.

We are increasingly building more and more sites using WordPress, in fact this very site is built using the platform.

Downsides – there really aren’t that many, but one thing to pay attention to is site security.

Virtually any site can be compromised or hacked if someone a) knows what they are doing b) has the time to spend trying to get into a site.

Wordpress is no different and as it is one of the most popular platform in the world, there are people out there that make it their business to target WordPress sites.

Last week there were reports of a series of Brute Force Attacks on the WordPress Platform, the botnet attack targeted sites with the default user name “admin”.

None of our sites were affected as we take site security seriously, to help you, here are a few simple tips to help secure your WordPress site.

Sheffield WordPress Security Advice

1. Never, never, never use “Admin” as your admin username, unfortunately “Admin” appears as the default username (which is why hackers target it). Make sure you change it when you are first installing, as once you accept the default username, you cant then change it through the Dashboard.

What if your site is already set up with the default admin? Don’t panic, install the following plug in and change it using the plug in.

Get it here:

2. Use a strong password!

Don’t use “password” or your site name as your password, don’t use “clever passwords” such as pa55w0rd, 123mydomian456 because quite frankly they aren’t that clever.

Use a unique password that includes letters, numbers and a character such as %, and use at least 8 characters.

3. Use the recently introduced 2 step authentication system.

4. When setting up the database change the database prefix from wp_ to something else.

5. Install a security plugin, our favourite simple plugin is Sucuri, it will scan the site for problems and it also includes a simple, 5 step set of 1 click hardening options.

Get it here:

6. Make sure you are using the latest release of WordPress.

7. Make sure you regularly update your plugins.

8. Most importantly make sure you back up the full site and database on a weekly or daily basis depending how often you make site changes, just incase any system or plugin update cause a conflict or you do get hacked, the best plugin we have found is backupwordpress.

Get it here:

Finally if you do get hacked, we can usually help to clean your site, clear any malware, remove any  backdoor scripts and then constantly monitor your site for only £125.00 a year, a small price to pay for peace of mind!

We hope this advice is of use and if you do need any further help, don’t hesitate to contact Team Brightstar.

Note: All information is supplied in good faith, based on our experience of using the above methods. However due to the WordPress platform being open source and the constantly changing nature of website design and its various platforms, Brightstar Creative can accept no responsibility for any problems resulting from the installation and usage of the above third party plugins or the suggested methods of basic security.