WordCamp UK 2014 How to Secure your WordPress Website
13/07/2014
2
About Me!
WordCamp UK 2014
How to Secure your WordPress Website
Mike Pead
Web design for 15 years
Based in Essex & London
Founded Primary Image in 2010
Mainly work with small/medium sized businesses
About Me!
Manage WordPress hosting for clients
100% WordPress Handle all their security,
including WordPress updates
3
Today's Talk
Why worry about WordPress security?
Steps you can take to secure your site...
1
13/07/2014
? Why is WordPress vulnerable?
6
% of WordPress Usage
60 %
23 % All Websites
CMS Websites
1 That's over 70 million websites in the world!
2 Half are self-hosted.
3
Only a fraction of sites change from
the default
configuration.
! = WordPress is an attractive target to hackers due to its popularity ? a victim of its own success!
? So why did I get interested in WordPress security?
2
13/07/2014 3
13/07/2014
! Most attacks are automated (i.e. bots)
Analysis by Wordfence
Looked at 26 million "page not found" reports from 30,000 websites
15
16
Bot URL requests
? 4th place: 102,800 requests: /wp-login.php ? 7th place: 31,800 requests: /wp-login.php?action=register ? 10th place: 24,000 requests: /wp-comments-post.php ? 11th place: 22,300 requests: /administrator/ ? 23rd place: 14,200 requests: /wp-content/themes/GeoPlaces/monetize/ ? 45th place: 8,500 requests: /author=1
Source:
4
13/07/2014
Bot URL requests
17
? So what does a botnet attack look like?
19
20
Consequences of an attack...
Website becomes inaccessible
Lose brand reputation
Lose SEO / become
blacklisted
?
5
................
................
In order to avoid copyright disputes, this page is only a partial summary.
To fulfill the demand for quickly locating and searching documents.
It is intelligent file search solution for home and business.
Related download
- cse127 introductionto security university of california
- cs 161 computer security prof david wagner
- web security computer security csc 405 kapravelos
- swe 781 secure software design and programming
- owasp path traversal cheat sheet
- dotdotpwn root me
- dumb web server ca
- s21 secure coding standards and procedures
- arbitrary file read to rce
- wordcamp uk 2014 how to secure your wordpress website
Related searches
- how to advertise your business for free
- how to invest your money
- how to promote your business online
- how to promote your business
- how to market your business
- how to advertise your business
- how to get your student loans forgiven
- how to prepare your house to sell
- how to advertise your website for free
- how to work cite a website mla
- how to value your business to sell
- how to cite a university website apa