How to Protect Your WordPress From Hackers Attack - HackTribune


Saturday, 22 August 2015

How to Protect Your WordPress From Hackers Attack

How to Protect Your WordPress From Hackers Attack!

An ongoing massive hackers attack against WordPress based websites has compromised more than 90,000 blogs. However, it is really easy to protect your WordPress website so that it shouldn’t be easy to hack.

These are Brute-Force attacks are latest sophisticated hacks with an ability of rapidly cycling through commonly used names, nick names, passwords like “admin”, IP addresses etc in order to access private files and other important data on the servers.

[caption id="attachment_730" align="alignnone" width="582"]Wordpress_Wallpaper Protect Your WordPress From hackers[/caption]

Security firm Sucuri  found that such attacks happen to WordPress websites and blogs tens of thousand times a day. These hacks use predictable patterns. To log in to protected accounts, the hackers usually try five username in huge number: “admin”, “test”, “qwerty”, “123456″ and “password”. Nearly 30 different IP addresses were isolated from many other IPs.

How to Protect Your WordPress Website & Blog

An easy and simplest way to protect your WordPress website and blogs is to change your password and user name from something to very uncommon name and password like alphanumerical password with more than 12 letters and number digits. It can prevent majority of botnet attacks from taking over your website.

If you use commonly used usernames and passwords as your login credentials, simply changing them to something a little hard to guess and uncommon will prevent majority of brute-force attacks making you more immune and will protect your WordPress based blog or website from future attacks.

An interesting thing that Sucuri found was “common” passwords that didn’t appeared to be common at all. The hackers made thousands of brute-force attempts with passwords like “#@F#GBH$R^JNEBSRVWRVW”. According to Marshall Honorof from TechNewsDaily, these strings of letters and symbols do not appear to have Any type of sample, However are not also inconsistent and repeated to become really random. Efforts from many anti hack professional and web security firms have gone in vain to find out the real meaning behind these passwords. Even translating them to non-Latin alphabets came up with nothing recognizable.

Although these attacks are pervasive but also very easy to avoid. If you’re going to get hacked anyways, at least make it pretty much hard for the hacker to accomplish it.



1 comment:

  1. Nothing perhaps of removing unused plugins or restricting access to the admin page to specific ip ranges, and not posting as an obvious admin account (i.e.: bhnadmin).