WordPress Basic Security Package
Is your site displaying security errors to your customers? Have you seen an increase in the number of SPAMMY Phone Calls & Malicious emails you are receiving and suspect your website may be the cause? Website Security is critical to safeguarding your customer’s personal information and checkout experience. Bots constantly scour the web in search of vulnerable un-maintained websites that have been left to sit unattended or un-monitored.
Our primary focus will be on completing all the items within this WordPress security package. If heavier pre-existing security issues exist, a Free Estimate can be provided which includes cleanup & restoration services.
WordPress Basic Security Package Includes:
- Website Security & Vulnerability Testing
- Website Installation Integrity Assessment
- Domain Health & Protection Assessment
- Domain Blacklist Checking
- SSL Error Checking + Repairs
- Enforce HTTPS on all Links
- Website Firewall Installation or Replacement
- Website Firewall Basic Hardening
- Address Critical Basic Security Vulnerabilities
- Malware Scanning + Review + Basic Removal
- Outdated Abandoned Plugin Analysis
- Website SPAM Comment Filtering + Removal
- Theme Vulnerability Assessment + Hardening
- Excessive Addons Assessment / Removals
- Changed File / Malicious File Checking
- User Accounts / Permissions Hardening
- PHP Version Assessment
- Enable Auto-Updates for Basic Plugins
- Enable Wordpress Minor Versions Auto-Updates
- Enable Auto-Updates for The Theme (If Viable)
- Enable Strong User Password Requirements
- Enable Admin Security Notifications
- Review Security Logs
- Enable Website Error Logging
- Full On-Site Website & Database Backup
Have a Technical Expert look under the hood for you to ensure nothing sinister is lurking.
Do you monitor the security of your website or online store? Good Security is only as good as your weakest link! If a site is left to sit without adequate security or regular patching, many vulnerabilities can develop leading to security issues, malicious activity, increased spam, bad backlinks, and eventually complete website takeover. If you or your customers are experiencing problems or seeing security-related errors, this website security checkup is essencial.
This WordPress Basic Security Package includes a wide array of security hardening & prevention measures. However, despite best efforts, websites can still get hacked due to hosting issues, wordpress vulnerabilities, plugin exploits, or theme vulnerabilities developers have not yet patched.
Requesting Admin Access
Clients who request access to the Super Admin WordPress Login credentials will be especially vulnerable since they will have access to the most vulnerable areas of WordPress. With good security only as secure as the weakest link, the website owner’s computer itself is often the reason their website gets hacked due to not having adequate computer security protection or practicing good internet security. Customer changes in the Admin Backend can also lead to lengthy investigations for developers if issues should arise. Only experienced WordPress Operators should have Administrator Level Access to leverage the WordPress User Permissions Hierarchy to keep a client’s website safe from harm. A single wrong move and wipe out years of work so you’ll want to have an experienced operator at the helm.
Clients Changing Passwords to Weak Ones
Complex Passwords are Standard Practise on today’s Web. Most services require you to create a super-strong un-crackable password to prevent unauthorized entry. Customers who change complex passwords to weaker ones will create an easy opportunity for hackers to exploit. For safety’s sake, website owners should request a lower level of access to the website to manage daily or weekly updates such as content updates, price changes, etc. Having two Administrator Accounts will only open up clients to attack. Sharing an Administrator account is not recommended.
The Added Protection & Risks of Enabling Auto-Updates
Enabling Automatic WordPress, Theme, and Plugin Updates ensures you get all the latest Security Patches as soon as they are issued by Developers. However, despite the best efforts by Developers to test their hotfixes, patches, compatibility, and coding improvements, issues can still arise that can lead to website errors and outages that can do undetected for a long time. Without an experienced operator at the helm monitoring error and security logs, testing updates, and visually inspecting the site as changes are implemented, it is only a matter of time before issues arise. Every WordPress website is made up of different plugins, addons, scripts, and functional. Since updates are rolled out every week, any WordPress site is in a constant state of flux under the hood. Things may appear normal on the front-public facing visual end, but on the backend, it could be a completely different story.
Old Installation Vulnerabilities
Having Old Website Managements Systems or failed aging WordPress installs and databases still sitting in on your hosting space can leave you wide open to attack. One infected install can certainly infect your new active website so be sure to report if you suspect old installs reside on your server for immediate removal.
Book your WordPress Security Checkup Today!
If you have any questions prior to ordering, please feel free to get in touch.
To secure a position in scheduling, payment will be required prior to service. A fully detailed invoice will be sent once the retainer amount has depleted. Payment can be by Interac Email Money Transfer or by Credit Card via Paypal.
For enhanced Security, Automatic Deposit has been enabled for all Email Money Transfers. Please make payable to firstname.lastname@example.org
The client will be responsible for any premium versions of security-related tools required by their business. All monthly or annual renewal fees will be the responsibility of the Customer.
Terms & Conditions
Since additional errors, conflicts, and issues can arise during security implementation & configuration that take additional time address beyond the original scope of this security package, Spenny For Hire cannot be held accountable for any plugin conflicts, site outages, security issues, login issues, spam, or any other functional or technical issues and errors of any kind as a result of applying the security best practises within the above package. It is always best to work through any issues that arise rather then scale back security measures leaving a site owner more vulnerable.
Some additional security-related servicing may be required to troubleshoot, work through additional newly revealed issues, manage support tickets, and provide any followups. An additional hourly rate applies to all additional security maintenance outside of this package including by not limited to deep infections, security troubleshooting, network troubleshooting, or any advanced additional security requests outside of this package.
Additional security-related services can also be purchased if required during checkout.
Please see the full Terms & Conditions for additional information.