Website Security for WordPress
If you have a WordPress website we strongly recommend that you make use of two-factor authentication. This will bolster your security by adding another layer of protection to your WordPress login.
In fact, we recommend two-factor authentication for all your logins.
Password security is vital in safeguarding your website.
No website is completely safe and we know the benefits of doing this will far outweigh any inconvenience.
Passwords that have been reused are weak passwords
According to the Verizon Data Breach Investigations Report, over 70% of employees reuse passwords at work.
But the most important statistic from the report is that “81% of hacking-related breaches used either stolen or weak passwords.”
Even though 91% of people know reusing passwords is poor practice, a staggering 59% of people still reuse their passwords everywhere!
Many people are still using passwords that have appeared in a database dump. A database dump occurs when a hacker successfully gains access to a user database and then dumps the contents somewhere online. Unfortunately for us, these dumps contain a ton of sensitive login and account information.
If you’re a DoodleIT client rest assured that we automatically prevent the use of known compromised passwords in your WordPress login.
A Data Breach that was hosted on MEGA included 1,160,253,228 unique combinations of email addresses and passwords.
This kind of score will provide a malicious bot with over a billion sets of credentials to use in brute-force attacks. A brute force attacks refer to a trial and error method used to discover username and password combinations to hack into a website.
Even if you have a strong password, you’re only as secure as every other admin user on your site.
OK, so you are the type of person that uses a password manager like LastPass to create strong and unique passwords for each of your accounts. But what about the other administrator and editor users on your site? If an attacker was able to compromise one of their accounts, they could still do a ton of damage to your website.
Google has said two-factor authentication is effective against 100% of automated bot attacks. That alone is a pretty good reason.
The solution to website security for WordPress
If you’re a DoodleIT client and want us to set up two-factor authentication for you just drop us an email and we will sort this out FREE of charge within 24 hours.
If your website is not with us but you would like us to bolster the security of your website and enable two-factor authentication for you please get in touch and we will see how we can help and advise.
DoodleIT works with small businesses and organisations such as councils and schools to help broaden their reach and provide useful information for their clients.
If you’re considering web design in North Wales why not get in touch and discuss your ideas with Peter or Anthony?