Approximately 30,000 websites are hacked each and every day; one of my own websites was hacked multiple times. You need to secure your WordPress website. I’m going to show you a tool that I use to make sure that my websites are never hacked again.
Disclosure: This article may contain affiliate links, which means that if you purchase a product through such links, we’ll receive a commission. Don’t worry, the price is still the same to you, and you’re helping us continue to provide free content!
My business’ website was hacked – multiple times
One day I started receiving a ton of bounce-back emails saying that my domain name was listed on Spamhaus’ DBL (an email blacklist that a lot of companies use to block suspected SPAM). I quickly hopped on Spamhaus’ website and requested that my business’ domain name be de-listed.
Spamhaus gave me a link to the page on my site that was suspected of causing the SPAM emails to be sent out from my server. The URL for the page had random letters in it, but it did exist on my server. I quickly deleted the randomly-named file. I went ahead and updated all of my WordPress plugins and all seemed good – for a few days.
Another morning I woke up to another unpleasant flow of bounce-back emails that said that my domain name was once again listed on Spamhaus’ DBL. I went through Spamhaus’ de-listing process and found that a new file was causing the issue. The file didn’t exist a few days prior, so somehow a hacker was able to hack my business’ WordPress website a second time.
I quickly deleted the file, and deleted files with similar names in older folders as well. I saw that there were over 100,000 emails in queue on my server, so I flushed out the queue to prevent any further damage (thankfully I limited the number of sends per hour or I probably would have been in even more trouble with blacklist providers).
Since my website kept getting hacked, I wasn’t sure what to do. I couldn’t afford to keep getting blacklisted, and I was fearful that my whole website would end up getting hacked and defaced. I started searching online for solutions.
I found the perfect solution and haven’t been hacked since
That’s when I came across Sucuri’s Website Firewall. Sucuri’s Website Firewall protects your website from hackers and network attacks.
Sucuri’s team continuously monitors security threats and patches vulnerabilities before they are able to be updated. My websites have not been hacked since I started using Sucuri’s services.
Sucuri also sends me proactive notifications when there are new major vulnerabilities (they patch these right away on their system without me having to do anything), and I can also see what hacks and attacks they’ve prevented for me in their dashboard.
When you use the Website Firewall, you can also do some cool things such as control which IP addresses can access your WordPress Dashboard, and enable site caching mechanisms that they have.
Sucuri also provides DNS hosting free with their Website Firewall service; I use their DNS hosting for Unordered List so that I’m protected from DNS attacks.
Save your website, too
If you’re serious about your business’ website, you need Sucuri’s Website Firewall. Their Pro package (which lets you use your own SSL certificate) is only $19.98 per month and is worth every penny!
If you don’t need your own SSL certificate, the Basic package is only $9.99 per month and includes a free LetsEncrypt SSL certificate.
Sucuri has saved me a lot of time, money, and headaches from day one. If I didn’t start using the Website Firewall for my websites, I would have kept getting hacked time and time again.
Latest posts by David J. Warho (see all)
- An Easy Way to Secure Your WordPress Website to Avoid Catastrophe - May 27, 2016
- 6 Informative Pages Your Business Website Needs - May 26, 2016
- How to Pick the Perfect Domain Name for Your Business - May 25, 2016