You may well have heard all the buzz online about the attacks on WordPress security. Unfortunately this is no joke, and it needs to be taken very seriously, or all you've built could be hijacked or worse, lost to you.
By default, the latest version of WordPress is pretty darn secure. Anything that might have been added to some fix hacked wordpress plugins has been considered by the development team of WordPress . Before, WordPress did have holes but now most of them are filled up.
Backup plug-ins is also significant. You want to backup database and all the files you can easily bring your site back like nothing happened.
There's a section of config-sample.php that is headed"Authentication Unique Keys." There are four definitions that appear within the block. A hyperlink is inside that part of code. You need to enter that link into your browser, copy the contents that you get back, and then replace the keys you have with the unique, pseudo-random keys offered by the website. This makes it harder for attackers to automatically create a"logged-in" cookie for your website.
It is really sexy to fan the flames of fear. That's what journalists and bloggers and politicians and public figures mostly do. It's terrific for readership and it brings money into the war chests. Balderdash.
There are always going to be risks being online (or even just being alive!) Also it's easy to get caught up in the panic. We often put the breaks on As soon as we get caught up in the fear. This isn't a good response. Take some common sense precautions, then forge ahead. If something does happen, it will need to be addressed then and no amount of quaking in your will have helped. Source If nothing does, all is good and you have not made yourself ill.