are you safe from hackers
TRANSCRIPT
![Page 1: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/1.jpg)
Are You Safe From Hackers
Michele Butcher
CantSpeakGeek.com WPSecurityLock.com
@Michele_Butcher
Slides can be found at http://mlb.pw/LadyBlogger
![Page 2: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/2.jpg)
Michele Butcher
WordPress Specialist, Site Cleaner, and Trainer for WP Security Lock
One Woman Wonder at Can’t Speak Geek
WordPress Website Designer
@michele_butcher
![Page 3: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/3.jpg)
Why is security important?
@michele_butcher
![Page 4: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/4.jpg)
Every day hackers try to find ways to get your information.
@michele_butcher
![Page 5: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/5.jpg)
Why do hackers hack?
Make bank
Build a zombie site army
Share their nasty malware with the world
Get your information
They are bored
They want to see if they can do it@michele_butcher
![Page 6: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/6.jpg)
How do they get in?
Guess your login. If you know it so can someone else. (Brute force attack or man in the middle)
Denial of Service attack (DDoS) flood your site with more traffic than it can handle
Through a theme, file or plugin
Through your FTP or CPanel. (Files set to read, write,execute. Brute force, anonymous login, shared hosting infection)
@michele_butcher
![Page 7: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/7.jpg)
And now for the only thing scary that I am going to say.
@michele_butcher
![Page 8: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/8.jpg)
You are NEVER 100% secure
@michele_butcher
![Page 9: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/9.jpg)
Even a test site or a knitting site with only 2 visitors can be hacked.
It can happen to your site.
@michele_butcher
It has happened to me, it can happen to you.
![Page 10: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/10.jpg)
Don’t let security make
you like this guy.
@michele_butcher
![Page 11: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/11.jpg)
Never fear… there are ways to keep the
hacker attackers out!
@michele_butcher
I promise it is not all that painful!
![Page 12: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/12.jpg)
Simple Online Safety Tips
![Page 13: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/13.jpg)
Be Mindful of what information you put on your website.
If you will not put the the information on a flier or in a commercial, do not put it on your website.
![Page 14: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/14.jpg)
Do NOT put your email on your website
Use a contact form. Let your users engage with you without them
finding out your important information.
![Page 15: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/15.jpg)
If you fear you might lose information, save it in more than one spot. Bitcasa, Carbonite, and
external hard drives are great options of backing up data.
@michele_butcher
Back Up Your Information
![Page 16: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/16.jpg)
ALWAYS use complex passwords. ALWAYS!
For everything!
“password” is never a good password!
@michele_butcher
![Page 17: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/17.jpg)
Use a different password for each and every thing you log
into.
![Page 18: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/18.jpg)
Use something like LastPass or One
Password to save your passwords and to share passwords with others.
![Page 19: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/19.jpg)
Never email passwords to anyone. Including yourself.
@michele_butcher
Use your password manager to share login information
![Page 20: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/20.jpg)
Anti-virus Protect your unit!
Yes I even have an anti-virus on my Mac!
AVG and Avast have free versions as well as paid.Kaspersky is great with Windows and Macs.
@michele_butcher
![Page 21: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/21.jpg)
Update! Update! Update!
Update your Antivirus, Operating Systems, and all the things
![Page 22: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/22.jpg)
Be conscious when using public WiFi.
@michele_butcher
![Page 23: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/23.jpg)
Use a VPN when connecting out in
the wild.
torguard.comstacksocial.com
@michele_butcher
![Page 24: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/24.jpg)
If the login has a Two-Factor authentication,
use it!
@michele_butcher
![Page 25: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/25.jpg)
WordPress Security Basics
@michele_butcher
![Page 26: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/26.jpg)
Never ever ever use admin as user name or password as password.
Never!
@michele_butcher
Got it?
![Page 27: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/27.jpg)
What to do when you have temporary people in your
dashboard
Set up a file change detection notification to know what they are changing in your site.
@michele_butcher
![Page 28: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/28.jpg)
Always use Sftp
Regular FTP is not secure. Do not use it unless the server is only set up for FTP.
![Page 29: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/29.jpg)
Only give them access to what they NEED not what they want.
Just because they want to be an admin does not automatically make them one.
Guest bloggers should not be anymore than a contributor.
![Page 30: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/30.jpg)
If it is only a temporary login, delete their login when they have completed their job.
If they have posts on your site, you can knock them down to subscribers so they can not change anything
on your site.
If they are only doing work, delete them when their job is done.
![Page 31: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/31.jpg)
iThemes Security ProGreat all encompassing best practices WordPress security plugin.
Two versions a free and a premium.
http://ithemes.com/security
@michele_butcher
Brute Protect
If you are mainly worried about DDoS attacks, Brute Protect has you covered.
http://bruteprotect.com
![Page 32: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/32.jpg)
Set up a file change detection notification to know what they are changing in your site.
iThemes Security and other security plugins give you the option to see what all users are doing when logged into the
dashboard.
![Page 33: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/33.jpg)
Who can scan my site for malware?
Google Webmaster Tools http://google.com/webmaster
VirusTotal https://virustotal.com
iThemes Security Pro htttp://ithemes.com/security
@michele_butcher
![Page 34: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/34.jpg)
Need an extra eye on your site?
CloudFlare has a free and premium version.
http://cloudflare.com
@michele_butcher
![Page 35: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/35.jpg)
Things you can do to protect your website
![Page 36: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/36.jpg)
Update! Update! Update!
Update core, update plugins, update themes, update content, update everything and update
often!
The biggest source of nearly all hacks as once something is patched, it is trivial to get into the
old stuff.
@michele_butcher
![Page 37: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/37.jpg)
If you use themes or plugins at any of the envato (Themeforest, code canyon) always check the box to be notified of
updates. they will not tell you otherwise
This is why the RevSlider SoakSoak infection was so widespread. Many didn't know the plugin was built
within the theme.
![Page 38: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/38.jpg)
Have a minimalist approach to plugins and themes.
Only have the plugins you are using at that time on your site. You can always upload them again later.
Only have your theme you are using on your site.
If something is not active, delete it.
@michele_butcher
![Page 39: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/39.jpg)
Back up your site!
Somewhere, anywhere, just have a backup copy.
BackupBuddy from iThemes is a great choice.
iThemes Security will do a database backup for you.
http://ithemes.com/backupbuddy
@michele_butcher
![Page 40: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/40.jpg)
Always back up to someplace OTHER than your server. If the
server gets hacked, so does your backup.
Even backing a copy to Dropbox or your computer is a better option.
@michele_butcher
![Page 41: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/41.jpg)
Don’t let your site get lonely.
Lonely sites can turn into zombie sites and nobody wants a zombie
@michele_butcher
![Page 42: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/42.jpg)
If your website get hacked it is not the end of the world.
It can and will be fixed.
@michele_butcher
![Page 43: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/43.jpg)
Who cleans hacked websites?
Well I do over at WP Security Lock ~Smile~
http://wpsecuritylock.com
I apologize… had to do one shameful plug.
@michele_butcher
![Page 44: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/44.jpg)
Wanting more information about website security?
Join the community at SafeWP
https://SafeWP.com
![Page 45: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/45.jpg)
Questions?
@michele_butcher
![Page 46: Are You Safe From Hackers](https://reader034.vdocuments.us/reader034/viewer/2022042817/55a6d0511a28abdb7a8b48a5/html5/thumbnails/46.jpg)
Thank you for attending!
Slides can be found at https://mlb.pw/LadyBlogger
Michele Butcher@michele_butcher
http://wpsecuritylock.comhttp://cantspeakgeek.com