Is your WordPress website secure?

A guest post about simple steps you can take to make your WordPress website secure 

WordPress website secure

Why you?

We all know there are hackers out there. So why would they attack your WordPress website? They attack your website not to get at you, but to distribute malware.The more malware they distribute, the greater the chance that the hackers can steal important information from people, such as logins and credit card data.
Often web developers neglect security. They create a site, then set it and forget it. Because of this, WordPress website security has become a huge part of our business.

 Learn more about our healthcare website development services ››

According to WP White Security, more than 70% of WordPress websites have vulnerabilities in their installed plugins that leave them open to attack. Once the word gets out, hackers will locate and attack websites that have the vulnerable plugin installed.

Make your WordPress website secure:


  • Website maintenance program – make monthly updates of all software, plugins and themes
  • Proxy Firewall – send the bad guys elsewhere
  • Security — Recommended plugins:
    • WordFence
    • Ithemes Security
  • Daily off-site backups – should your site get infected we can retrieve an earlier clean version. Recommended plugins:
    • Backup Buddy
    • ManageWP
  • SSL (secure socket layer) installation – protect data being sent from the website, such as credit card information. Recommended SSL services:
    • Comodo
    • GeoTrust
    • Let’s Encrypt (free)
  • VPS (virtual private server) hosting, or consider even higher security


  • Create a Google Webmaster Tools account – Google will warn you when your site has malware
  • Malware scanner – a daily scan of your site that will remove malware once it is found. Recommended services:
    • SiteLock
    • Sucuri
  • Regularly change all passwords in all accounts, including:
    • FTP
    • WordPress backend
    • Hosting account

If you follow these steps, your website has a pretty good chance staying secure. But as we have seen in the media, it’s hard to be 100% bulletproof. For more information on website hackings there is a great report by Sucuri here –

About the writer

Beverly Stacey is President of Façade Interactive, a Brooklyn web design and development agency that has been building websites for over 18 years. We create websites that are easy to navigate, rich in imagery, and functional for our client’s needs. Our team consists of 12 developers/programmers, a set of triplets who help with content additions, and a network of amazing partner individuals and companies.

About us

LevinsonBlock is a Brooklyn-based healthcare marketing agency that specializes in mid-sized organizations. Our clients include healthcare providers such as FQHCs, disease foundations, and healthcare technology firms.
Click here to subscribe to Brandscape, our twice-monthly newsletter on healthcare marketing.
# [white

Let’s Talk