You probably heard about last month’s ransomware attack on the NHS. And there was another attack across Europe this week.
I don’t know about you, but this stuff scares the crap out of me.
(Can’t the intelligence services figure out who these people are and send the SAS to visit them? It’s what they deserve.)
Anyway… that got me thinking and I realised that, compared to most website owners, I know a lot about site security. (Much of this was learned the hard way.)
So, to help you protect your sites, here are some tips for WordPress security:
#1: Don’t use Admin
When I set up a new WP site, I create a new user with admin privileges. Then I delete the user called “Admin.”
(more…)