Your website is the heart of your business. Protecting it is essential to keeping your business running. No one wants to be the victim of a website hack, but it can happen even if you prepare! If your WordPress website was hacked, here are 4 actions you should take immediately to secure your site and get it back up and running. With these 4 keys to restoring your website after a WordPress security breach, you’ll be able to quickly recover your website and get on with life!
1 | Change Your Passwords Immediately.
You need to change all of the passwords associated with your website, that includes your WordPress user account, hosting account, domain account, and email account. Change your password to something new and unique. Do not use the same password for all accounts! Now would also be a good time to implement 2-factor authentication on any and all accounts that support it. This will give you an added layer of security for the future.
For multi-user sites:
Require password changes for all users on your site. You should also force all users to log out of the site and re-login with their new credentials.
2 | Check for (and Delete) Unauthorized Users.
Even if you are the only user of your website, check the WordPress users! Delete any new, unfamiliar users, and be sure that under the general settings you have turned off the ability for new users to sign up to your website (unless of course, you need that functionality).
3 | Scan Your Website.
This post contains affiliate links. If you make a purchase from one I will receive monetary compensation at no additional cost to you. I only share products & services I use and believe in.
Just like your computer, your website can become infected with viruses and malware. Fortunately, you can easily scan your site to find any common malware or virus infections. Your first stop should be your host’s c-panel or dashboard. Check to see if they have a free virus scanning tool that you can use (my host, Namecheap does). Next head over to Security and try their free Sitecheck tool. These tools will scan your site for common malware & other site issues and if found, alert you to their presence.
4 | Restore Your Site From A Backup
This is one of the reasons for backing up your website is essential. You don’t only need to back it up before you make a change, it’s also a good tool that can save you a lot of time and effort to recover from a hack. Restoring your site from a clean backup will allow you to easily ensure your site is free from any unwanted changes or malware and is working as intended.
3 Tips to Ensure WordPress Security
Recovering from a WordPress hack is time-consuming and stressful! You don’t need that in your life! While there is no guarantee that your site isn’t going to get hacked, there are steps you can take to keep your site safe & secure.
1| Use a unique Password & Username
WordPress is the most popular content management system (CMS) on the web. That makes it a tempting target for hackers! Many attacks on WordPress are brute force attacks targeting site with weak or default usernames and passwords. These attacks try to hack the administrator accounts for the WordPress website by guessing the username and password. By simply selecting a strong, unique password and avoiding common account usernames like “admin” and “administrator” you can keep your site more secure.
2| Use a WordPress Security Plugin
There are lots of security plugins out there to help improve WordPress security. Three of my favorite WordPress security plugins are WordFence, BulletProofSecurity, and Securi Security. Plugins like these will give you more control over your site’s security as well as help you avoid common security issues.
3| Install Updates
Plugin, theme, and WordPress updates happen for a reason. That reason usually includes the fixing of vulnerabilities and security issues. Keeping all of your plugins, themes, and WordPress core files up to date will help keep your site secure and stop old vulnerabilities from being a problem for your site.
Website security is important to protect your business and your customers. By taking quick action in the event of a hack and simple steps to keep your site secure you can recover quickly and get your website (and business) back to normal.