Most WordPress website owners realize security is a serious issue once it’s too late. Even though WordPress is secure, there are various malicious bots and hackers that like to target WordPress websites because they know website owners are lackluster when it comes to security.
However, with a little preparation and common sense, you can reduce your chances of getting hacked and keep your website secure.
Have a Strong Username & Password
Don’t choose “admin” as your WordPress username since it’s one of the most commonly attempted usernames in all automated hack attempts. If you’re still using admin as your username, the hackers are already one step ahead of you and will have no problem getting into your site sooner or later.
Changing the admin username is an easy process. Go to Users –> Add New User.
Fill out all the information, choosing a more complex username and a strong password that includes lower-case letters, upper-case letters, numbers, and characters. Change the new user’s role to Administrator.
Then logout of your website and log in with your new username and password. Go back to Users –> All Users, find your old user with the admin username, tick the checkbox next to it and select Delete from the drop-down menu. Click on Apply. On the next screen, make sure to attribute all the content to your new user and then click Confirm Deletion.