Security
17 articles in this category.
Locked Out of WordPress? How to Add an Admin User via SQL
If you're locked out of WordPress and the lost password feature isn't helping, adding a new admin user directly via SQL is a reliable way back in. Here's exactly how to do it safely.
Kirki Plugin Vulnerability Lets Attackers Reset Admin Passwords on 400,000+ WordPress Sites
If your WordPress site uses the Kirki page builder plugin, you need to update it today. A critical flaw in versions 6.0.0 to 6.0.6 lets anyone reset your admin password without ever logging in.
Everest Forms Pro Has a Critical Vulnerability Being Actively Exploited, Here's What to Do
If your WordPress site uses Everest Forms Pro, you need to act now. Attackers are already exploiting a critical flaw in the plugin that could hand them full control of your site.
Why a WordPress Support Retainer Is Worth It for Growing Businesses
A WordPress support retainer means a dedicated team already knows your site, your goals and your priorities, so work gets done faster, for a fixed monthly cost that's easy to budget for.
Two Security Flaws Found in Avada Builder WordPress Plugin, Update to 3.15.3 Now
Two security vulnerabilities have been found in the Avada Builder WordPress plugin, which has around one million active installations. One can be exploited without any login at all. Here's what you need to know and do right now.
Jetpack vs Wordfence: Which WordPress Security Plugin Should You Choose?
Jetpack and Wordfence both protect WordPress sites, but they work very differently. Here's a plain-English breakdown of their features, usability and pricing to help you decide which one suits your business.
WordPress Hacked? How to Detect, Clean Up and Prevent It Happening Again
Your WordPress site got hacked. Here's how to spot it early, contain the damage, remove malware from files and the database, and lock things down so attackers can't get back in.
How to Block Countries from Accessing Your Website (And When You Actually Should)
Blocking entire countries from your website sounds drastic, but for some businesses it makes real sense. Here's how to do it properly, what to avoid, and how to decide if it's worth it.
How to Hide Your WordPress Login Page With a Custom URL
Every WordPress site uses the same default login URLs, making them an easy target for bots and brute-force attacks. Here's how to change yours in three different ways, no coding required if you'd rather not.
WordPress Security Checklist: The Most Important Steps for Small Business Sites
Your WordPress site does not need to be complicated to be secure. Here are the most important steps you should tick off, and why they actually matter for your business.