5 security tips to protect your WordPress (Plugins Edition)

Protect yourself from any software or malicious person who tries to sabotage your projects.

This time we’ll talk specifically about plugins so that your website and your clients’ sites are always safe.

1. Install only the essentials

Each plugin installed on your website is a piece of the entire “engine” of your project. Adding more elements can generate a positive change but at the same time, it makes the structure more complex.

What is the problem, then? Not all developers use a code that guarantees the security of the web on which it is installed.

How to make sure everything’s fine? Simple: install only the necessary plugins but first in a test website, this means, not in the one you are building for yourself or an external project.

2. Install only recent plugins

There are plugins and themes that have stopped updating and have been abandoned. We recommend that you check frequently the origin of these plugins to make sure you have the latest version. If it’s becoming obsolete, look for a new one that can meet that need.

Another recommendation is that you use the ones that are in the official WordPress directory since they do the necessary curation in their lists. This means that they automatically remove obsolete or nonsecure plugins.

3. Clean plugins and themes

Free space in your hosting by deleting everything you’re not using, themes and plugins that are inactive. They represent a vulnerability on your website, even if they are not active.

The only issue that we recommend you not to delete is the default theme of WordPress since the WordPress protection system can detect the problems that the theme you have activated and in case of emergency, it will automatically activate the default theme, protecting it from vulnerabilities.

4. Stay away from torrents!

As we said before, the 100% recommended a website for downloading plugins is the official WordPress directory. Their versions will be updated, checked and therefore are safe.

• https://es.wordpress.org/plugins/
• https://es.wordpress.org/themes/

We also recommend, if you leave the directory, review only official websites of the plugins and themes, such as the original Divi page, Envado, Woothemes, Elegant Themes, etc.

5. Security plugins: Activate them

There are specialized security plugins for WordPress. Among its many advantages can avoid attacks, modifications, injections of codes, etc.

The most recommended are the following:

• WordFence
• iThemes Security
• Bulletproof

Did it help? Safety first!

See you next time!