When it comes to WordPress, security is no joke.
Like any web software, WordPress can be vulnerable to many attacks. To help keep your site secure, you’ve probably instituted best practices, probably with the help of a plugin like iThemes Security.
However, when it comes to website security, the biggest weakness is really us—the users.
Just take a look at this story from Wired. Mat Honan, the article’s author, was hacked not through some technologically genius software. Instead, the hacker simply called up tech support numbers and was able to extract info from the support agent about Mat. The hacker then used this info to gain access to all of Mat’s accounts and wreck havoc.
With a website, you can have the most secure server, follow all best practices, but if someone gets your password, they will gain access to your site.
This year at WordCamp Miami, Chris Wiegman, creator of Better WP Security (which became iThemes Security), discussed ways in which many users are exposing themselves to security flaws that they aren’t even aware of.
Here are five important ways you should keep yourself secure.