Six tips to keep your WordPress site secure

Johannesburg, 25 Jun 2020
Read time 2min 30sec

Because WordPress is such a popular CMS (content management system), it’s important to ensure your security is top-notch. Xneelo has outlined six security checks all Web site owners should run – we’ve given you an overview below. Read the full article for all the details.

WordPress security 

Keeping your WordPress Web site secure is an essential part of Web site maintenance. It’s so important to keep on top of Web security: the more time you invest, the more you benefit. Here are six of the best security measures you can undertake to secure your Web site:

1. Always update WordPress core, plugins and themes

Any plugin or theme you download should be updated as soon as a new update is released. Also be sure to research any plugin before installing it to ensure you’re making a sensible choice.

You may notice that some plugins are not compatible with the version of WordPress you're using. This normally means the plugin has not been kept up to date by the developer. If you come across a warning like this, it's best to avoid using these plugins.

2. Choose strong passwords

Whatever you do, avoid simple and easy-to-guess passwords. Strengthening your password is an important step in stopping brute-force attacks on your Web site. This includes:

  • WordPress admin account (do not use ‘admin’ as a username)
  • WordPress user accounts
  • FTP accounts
  • Database login credentials

Looking for more advice? Here are some do’s and don’ts of password management.

3. Choose a reliable Web host

There are two things to look for when choosing a Web host: robust hosting infrastructure and good customer service.

Xneelo is on a quest to achieve the most secure and optimal environment for our hosted Web sites, as outlined in our security statement.

4. Always use SSL certificate and HTTPS

An SSL certificate installed on your Web site will make it possible to send Web pages over the Internet securely, via encryption. All of xneelo’s hosting accounts include free SSL certificates with Let’s Encrypt.

5. Keep daily backups of your Web site

Making a daily backup of your site is a helpful way to ensure you have what you need should you need to restore your Web site. You can also consider installing one of the backup plugins available on

6. Choose a good security and firewall plugin

If you choose a good security plugin, you’ll be able to reduce security risks as the plugin will apply the latest WordPress security practices and techniques.

This is just a brief look at the six checks you need in place to ensure good WordPress security. For step-by-step details, check out the full article here.

Editorial contacts
Xneelo Marketing (0861) 0861 08