WordPress websites, depending on the source seem to have over a third of the market share when it comes to websites in general and over 60% of websites running some CMS software.
With this said, such a big part of the web must also be observed from a security standpoint.
We have tackled this topic some time ago and all of the advice there is still valid and worth repeating. In short, the steps you should take to keep your WordPress website safe are:
- Keep the core and plugins up to date
- Keep your server tidy
- Update your passwords regularly
- Encrypt the site with SSL
- Use a proactive antimalware tool
The first step – Keep the core and plugins up to date – seems to be the most common element that WordPress owners neglect if their website is not maintained by some company. For example, the latest core update with security patches was issued on May 13, 2021, and we are still seeing websites that have not updated their core.