Lots of customers we work with come to us because they have an outdated website that is based on the WordPress framework, whilst others come to us specifically requesting that we develop their site using WordPress. Whether the site is an established site or a brand new one. Making sure you the version of WordPress you’re using is critical to the success of your website.
I’m safe, no one would bother hacking my site.
It’s reasonable for customers to suspect that hackers only target corporate or government websites that handle sensitive financial or customer information such as credit card numbers and personal information. However, this simply is not the case. Over the years a number of our clients with simple informational websites have been hacked by malicious software. Hackers write code that automatically scans the web and identifies vulnerabilities within websites running older, expired software.
Sometimes the hackers are only doing it for vanity (look what I can do), other times its so they can use your website to transmit span across the internet using your email accounts.
In rarer cases, hackers want to hold your website for ransom until you pay them with money – Bitcoin.
If you’re on a shared hosting server, they may be using your site as an indirect access to another site, but causing you disruption in the process
- Hackers may want access to the server where your website is hosted, and by gaining access to your website, they may be able to extend their hack to the server and all the websites that are hosted on it.
- Hackers may want to use your web account to send emails or host content hidden from view.
- Hackers may use your website to promote products or illegal content by hiding links inside your code, even though you can’t see it, it still can boost their content within the web.
What should I do
If you’re using WordPress, it is critical that you keep your core code and plugins up to date. Always update to the newest releases, which often contain security patches.
Of course, this option only works reliably in WordPress as long as any customisation to the website theme or core functions was conducted by a competent WordPress practitioner. If they simply hacked updated onto your website, upgrading to the latest version of WordPress, without backing up your code could be the worst option.
WordPress is built to alert you when updates to the cored (minor & major) updates are available. It also provides this advice for its plugins.
For some people, being told that an upgrade is available is not enough. They may be time poor or simply not interested. Luckily there are free plugins to help with hate
Easy Update Manager
There is also a very powerful plugin that allows you to automate the backup process. The plugin lets you choose which plugins you do not want to update automatically.
This free plugin allows you to schedule backups of your website and offers you the opportunity to automatically back up your files and databases locally or externally (Dropbox, Amazon etc…..).