Keep your website online by following best practices for essential WordPress security. Please keep in mind, the following list of suggestions is far from comprehensive. This is only the essentials: a starting point for your WordPress security. There are a lot of malicious entities on the Internet. Some of them try to hack websites; and …(Read More)
Zombie brute force attack bots vs. WordPress
There’s a zombie brute force attack botnet on the loose, and it’s going after your WordPress website. If you run a WordPress website, and if you ever look at your server logs, then you are probably aware that there has been a recent series of ongoing mass-scale brute force attacks against pretty much every WordPress …(Read More)
The problem with blocking by IP address
Using an .htaccess deny directive, it is possible for a website administrator to block a known malicious visitor from accessing a website. Unfortunately, a recent series of large-scale distributed botnet attacks have revealed the problem with blocking by IP address. Simply put, you can't block them all. Blocking by IP address: The good old days …(Read More)
Why do people hack websites?
A couple times recently I've been asked, ‘Why do people hack websites?’ So I thought I would offer an explanation. Briefly, hackers are in it for the money. As Bruce Willis said in Die Hard 4, ‘It's always about the money.’ Hackers attack a computer system in order to gain control over it. Once they …(Read More)