It was Monday morning and I was on a call with a dozen others who are my peers. Each of us helps the small business owner with their businesses in one way or the other. It was at the end of the call and we were each sharing our websites and going over how to make little improvements here and there. Time was running out and there was just enough time for one more website review, I volunteered. As my site was coming up for all to see suddenly the screen turned a maroon red with an outline of a security officer with his hand stretched out and the words of"don't precede malware danger." I was horrified to recall exactly what it said although there was more. I was worried about my site on being ruined plus humiliated the people on the telephone had seen me so vulnerable that I had spent hours.
The fix wordpress malware protection Codex has an outline of what permissions are okay. Directory and file permissions can be changed either via an FTP client or within the administrative page from the web host.
Strong passwords - Do what you can to use a strong password, alpha-numeric. Read Full Report Easy to remember passwords are also easy to guess!
1 step you can take is to delete the default administrator account. This is critical because if you do not do it, a user name which they could try to crack is known by malicious user.
Can you view that folder what if you go to WP-Content/plugins? If so, upload this blank Index.html file into that folder as well so people can not see what plugins you have. Someone can use this to get access because useful site even if your version of WordPress is up to date, if you are using a plugin or an old plugin using a security hole.
Whenever your website is new, you do consider needing security but you do need to protect yourself and your investment. Having a site go down and not having the ability to restore it may mean a loss of consumers who can not find you and won't remember to search for your website again later. Do not let that happen to you. Back your site up as soon as you get it started, and schedule backups for as long as the website is operational. This way, you will have WordPress security and peace of mind.