WPBeginner»Blog»wordpress security

wordpress security

How to Stop Users From Sharing Passwords in WordPress

Last updated on March 31st, 2015 by Editorial Staff

By default a WordPress user can login to an account from multiple locations at the same time. This may compromise security of your multi-author WordPress site, and it can definitely hurt your profits if you run a membership site. In this article, we will show… Read More »

How to Easily and Securely Manage Passwords (Beginner’s Guide)

Last updated on April 29th, 2024 by Editorial Staff

Do you feel overwhelmed by the number of different usernames and passwords you have to remember? Recently, one of our readers asked us for the best and most secure way WordPress users can manage their passwords. In this article, we will show you how to… Read More »

How to Add Password Free Login to WordPress Using Clef

Last updated on April 7th, 2014 by Editorial Staff

You’ve probably heard security experts emphasizing on using strong passwords and even forcing your users to do the same. What if we were to tell you that you no longer have to remember a complex strong password, and you can login to your WordPress site… Read More »

WordPress 3.6.1 Maintenance and Security Release

Last updated on September 11th, 2013 by Editorial Staff

Just when you think that the day was about to be over, we started seeing an update bar in our dashboard. Turns out that the WordPress has released WordPress 3.6.1, maintenance and security update. In this release, the WordPress security and maintenance team fixed three… Read More »

WordPress 3.5.2 – Maintenance and Security Release

Last updated on June 21st, 2013 by Editorial Staff

It’s Friday and work day is almost over here on the East coast of U.S, but we are still here updating all of our WordPress sites as we write this. The WordPress team have released WordPress 3.5.2, maintenance and security update. In this release, the… Read More »

WordPress Brute Force Attacks, and What You Need to Do About it

Last updated on April 12th, 2013 by Editorial Staff

Several major sources have confirmed that there are mass brute force attacks being targeted towards WordPress and Joomla sites as we are speaking right now. HostGator, InMotion Hosting, LiquidWeb, and many others have informed their customers regarding this issue. The hackers botnet contains over 90,000… Read More »

How to Restrict WordPress Site Access by IP or Logged In Users

Last updated on July 28th, 2014 by Editorial Staff

You are about to launch a new product, and you have developed a great website for it using the world’s favorite web publishing platform, WordPress. You want to test it live on its own domain and hosting, but you are not yet ready to make… Read More »

5 Reasons Why We Use Sucuri to Improve Our WordPress Security

Last updated on March 1st, 2016 by Editorial Staff

About a month or so ago, we started seeing a huge number of failed attempts of reaching WPBeginner’s login page and wp-admin page. We got extremely cautious about that. From password protecting the wp-admin directory to adding two-step verification process, we tried to do everything… Read More »

WordPress SQL Injection – Latest Attack

Last updated on June 21st, 2012 by Editorial Staff

A lot of sites are being hit by a recent SQL attack where codes are being injected to your site. This MySQL injection affects your permalinks by making them ineffective. As a result, your blog posts URLs will not work. We will show you how you can identify and fix this issue.

How to Restrict WordPress Admin Access by IP Address

Last updated on March 28th, 2024 by Editorial Staff

Do you want to restrict access to your WordPress admin area for security reasons? If you have a small team, then one good solution is to restrict access to only those IP addresses used by team members. In this article, we will show you how… Read More »