Secure WordPress Hosting, what is it, exactly?

wordpress_developmentIn February, I wrote about ways to secure your WordPress blog (you can see that post by clicking here). One of the 5 points I made was to have a WordPress specific hosting account. Since that post, we’ve had numerous people ask about what exactly our WordPress Hosting has to offer, and how it differs from regular shared hosting. Because of that, I decided to make a post about it.

So, what do you get with Secure WordPress Hosting?

1. Automatic Malware Scanning – Allow me to be a little bit blunt here. WordPress websites get hacked, and they get hacked a lot. It’s the reality of using WordPress. There are a countless number of themes, plugins, addons, and all sorts of other things that you can use to customize your WordPress. Each one of these presents a hacking risk. How, you might ask? Most themes and plugins are created by the community. That means WordPress has no hand in their creation. As such, there’s no telling how secure they are from the get-go. As these themes/plugins get older, if security holes aren’t patched (or if a user chooses not to update them) then hackers have an easier time gaining access through these vulnerabilities. Through these vulnerabilities, they gain access to your account and upload malicious content.

What the automatic malware scan does is scan every single file that is uploaded to your account, and checks for any malicious code in these files. This protects you on two levels. Any time you upload a plugin or theme that may have vulnerabilities, it will stop those from getting to your account. Also, if by chance you let a theme or plugin get out of date, and it does happen to get compromised, any attempt to upload malicious files will be automatically blocked.

2. Automatic Malware Quarantine – Of course, detecting malicious files is only good to you if something is done with them. Any file our system detects as being malicious will automatically be put in quarantine and won’t affect your account, or website. Any time this happens, an email is automatically sent to you letting you know these files were detected and removed from your account. After 24 hours, these files are automatically removed from the quarantine area.

3. Premium Backup Service – An important part of website security, WordPress or not, is having a fail-safe. A fail-save, in terms of websites, is a backup. It’s imperative to have backups of your website in case something goes wrong. Our premium backup service offers two tiers of protection. One form of protection is our automated backup service. Once a week, we will automatically backup your account. This will be kept on our backup servers and if you need it restored, we can take care of that for you.

The other option you have is to take backups yourself directly inside your cPanel. You will have access to our backup on demand tool, which will allow you to take a backup any time. This is especially handy if you are making significant changes to your account and want to have a backup just in case something goes wrong.

4. SSD Database Storage – WordPress is largely database driven. Most of the data you store is done in a MySQL database. As such, it’s important that the database runs as quickly and seamlessly as possible. In order to do this, all databases are stored on SSD drives (solid state drives). SSD drives run faster, and are much more reliable than standard hard drives because they have no moving parts, which means there’s less opportunity for them to fail. Think of it as your information being ready on demand, without it having to be searched for.

These are only some of the features you’ll get with WordPress hosting from WebHostingPad. We offer three different packages, based on what you need, so to find out more specifics you can visit our WordPress Hosting page.

5 Ways to Secure your WordPress Blog

WordPress is by far and away the most widely used content management system (CMS) on the internet. Over 25% of websites use WordPress. By comparison, the next most popular CMS, Joomla, is only used by 2.8% of websites. The ease of use, huge community, and seemingly endless number of available themes and plugins are among the reasons why WordPress is as popular as it is.

Unfortunately, being so popular also means it’s a popular target for hackers. After all, hackers want to cause as much devastation as possible, and what better way than to try and hack the platform that is used by over a quarter of the internet?

There are some easy ways to protect yourself from these hackers, though. Most of the things below take little to know tech savvy at all, and following these practices will make your WordPress website safe from most vulnerabilities.

1. Don’t use the username Admin

This is simple enough, but something plenty of people don’t do. WordPress installations through script installers like Softaculous sometimes will default to the username Admin. You should always change this. One of the most common hacking attempts is done by what’s known as brute force, which essentially is a hacker using an automated script to try thousands of usernames and passwords. If you use the username Admin you’ve already done half of the work for them.

2. Update your plugins, themes, etc.

Another relatively easy way hackers gain access to WordPress accounts is through plugins and themes. As these plugins and themes get older hackers get more time to try and find the vulnerabilities in the software. They use these vulnerabilities to update malware onto WordPress accounts Keeping your WordPress software updated is a simple way of thwarting attacks from the get-go.

3. Take frequent backups

Taking backups of your website is an important habit to commit to, regardless of what platform you’re using to manage it. Backups will save you if something disastrous were to happen. It only takes one mistake to ruin a website, and not having a backup will lose you hours upon hours of hard work.

There are plenty of plugins that can automate WordPress backups for you. BackUpWordPress is a free, simple plugin that you can use to schedule backups whenever you want.

4. Use strong passwords

You’d think this would go without saying, but you’d be surprised at how simple some passwords are. If you have trouble remembering more complex passwords you can download the program KeePass which will allow you to securely store all of your passwords so you can grab them easily when you need them.

5. Choose the right host

It wouldn’t be a blog post without a sales pitch, right? A good hosting company will help you stop hackers from successfully breaking in to your account. WebHostingPad’s Secure WordPress Hosting does just that, and more. While standard, shared hosting accounts are secure, they don’t specifically enhance WordPress security like WebHostingPad does. With this package you get:

  • Automatic Malware scanning
  • Automatic Malware Quarantine
  • Off-site Backups
  • Global CDN

Along with these security enhancements you also get placed on a special set of servers that host only WordPress websites. This is because we built these servers to specifically run WordPress as fast as they could. The servers include SSD storage (which are much faster than standard hard drives), performance Cloud Linux, more RAM, and more.

Regardless of what web host you choose or what package you’re on, these are some simple steps you can take to protect your WordPress website. Doing such will greatly reduce your risk of being hacked.

Have any of your own ideas on how to protect a WordPress website? Let us know in the comments!