Reader engagement can be great for your blog or site, but spam comments are not. Not only do they chip away at your creditability, many of them contain bad links that will get you pinged by Google, hurting your SEO. CleanTalk, Akismet, and Spam Destroyer are all solid choices for combatting comment spam.
Firewall’s protect against a number of types of malicious traffic (DDoS, cross-site scripting, SQL Injection and web session hacking) by analyzing http and https requests. While there are no guarantees that your site will be 100% secure, 3rd part WAF companies specialize in knowing the latest threats and how to prevent them.
A good security plugin will track repeated attempts to access your dashboard or files more than once and block that IP.
If your site goes down for whatever reason, you need to know as soon as humanly possible. Services like FreshPing, PagerDuty, and Super Monitoring ping your site and alert you if it goes offline.
Hackers can access your database via SQL injection via forms, checkout pages, search bars, and other places on the front-end of your site that accept user input. Good malware scan software should alert you to any vulnerabilities on your site. It’s also important that you use reputable, actively maintained plugins and keep your site updated. […]
If your site still starts with http instead of https, you’re missing SSL certificate. There’s no excuse for not having an SSL certificate these days. A good hosting provider will include one free of charge, and there are other options such as Let’s Encrypt that provide them free as well. SSL ensures all data on […]