The Ultimate WordPress Security Guide To Prevent Hacking & Malware Attacks

That was a Great video, Adam.
I do have a couple of questions:
1. What do you think about "Solid Security"? (they were used to be called "iTheme Security")
2. What do you yourself use for Anti-Spam in your Comments area and can you please do a video tutorial on it?

I like your videos, however, Patchstack does not do malware removal. Just an FYI

any info on this please BPS Alert: Hidden Plugin Folders|Files (HPF) Alert -

Very nice. I am starting out as a wooCommerce website builder. I wanted to point out one thin you forgot to mention. The security of the computer you use to access your website manager is crucial. Most people use a password manager like google and if they loose that one password, everything is lost.

I really appreciated your video and big thanks...Hats off to you!

Can l ask for personal help please

what about blue host, host gater and similar?

A former dev of mine uploaded a file into wp content containing some files such as a .htaccess file. He did never mention anything. Is this something really bad? And how can he upload it? I didnt give him FTP, only admin for the website, meaning he could go into ghe backend

Really ultime security but didn't cover basic infor such as Such as wp-amdin extension change, free plug in to block brute force attack, hardening of files ect. Can do all this with free reputable plug ins.

why is there no support with hostinger

Your connection is being protected 😊

I am with Godaddy. I have paid for website security and I got malware. My site was down for days and days. They were just opening and opening support tickets and nobody would fix my site. Stay away from Godaddy.

Is GPL Themes and Plugins are pirated? If no, can I use these to my clients or personal sites?

Are reputable GPL vendors ok?

Thank you!

What about image etc upload that customers can order? T-shirt, mug makers or even a photographers can face that issue.

Is CLoudways the same as Digital Ocean? DO is terrible...

Hi, i don't mean to be picky, because this is an important video. But can I ask you to do a yearly update for us? It makes sense to keep it recent. Thanks for the awesome videos :)

Very helpful.

i have continue to enjoy your video, sitegroung host have you stop recommened it ? no mesion of it in this video

Allowing developers access to administrator accounts is a major security breach. Some developers claim they cannot solve bugs unless they have access. That is a lie. There are other ways to debug plugins. I do NOT allow them access. They have to fix their plugins some other way. Did not mention state-sponsored or commercial espionage which not includes spying but also sabotage. A good security scanning firm like Cleantalk will deal with many problems.

Why don't you like cPanel brother?

Does goDaddy purposely create issues and force customers to buy options to protect the sites or Sell anything?

Very thorough video about the rigors of modern website security.

Great video as always. Really appreciate your work.

I'm the 900 Like! =) Thanks for the great content you provide.

Why didnt you talk about VirusDie?

Hey, great vid as always!
It made me think of my next planned website. Can you tell what exactly is needed, how many plugins to make a (smallish) e-commerce website secure? Like what is needed to make a website secure as possible: SSL, Sucuri and so on. It would help lot of viewers to ease their minds as website creation or making a website as secure as possible can be really overwhelming.

I've noticed on the WP plugin repository that most of the 1-star reviews for the iTheme Security plugin are all recent, (and the 5-star reviews are months old) with most saying the update has ruined a great plugin and asking them to roll back to a previous version. Have you evaluated your glowing review of the plugin for current WP versions? Do you still feel the same, or did they make a misstep and it's no longer a good choice?

Hi Adam,

What a great video! I have been thinking about improving the security of my website. I recently helped my sister set up a WordPress website as well, and I think she will appreciate this video as well. I gained a lot of information that will be very helpful in the process. I really appreciate you sharing the top problems with security. I realized I have been making some mistakes with the security of my website. Thanks a lot for sharing this, it was a great help.

Does either Sucuri or Malcare slow down your site? I run Kandence and want to get control of this. I am getting a few spam comments even as the Themes and Wordpress comment features are disabled.

Awesome video, Adam you are the best!

my website got hacked and sending emails with my store email

Thank you.

What about itheme security??

Hey Adam, what do you think about License Share websites like WP Spring? They aren't pirated, right? Just a legal license share? I mean, I know you have to update manually the plugins when they get a new version on the membership... and no support. but they aren't pirated with backdoors and skimmers and such, right?

Good tips. Also choosing the right hosting is crucial.

#1 tip: Beware of bad plugin and theme resellers. The $5.99 all access you see on Facebook and elsewhere is a scam!

Thanks Adam for this tip and all the others!

Is there some way to turn off the tutorial shown after every update, and save the layout preferences made for the editor?

How good is iThemes Pro Security plugin?

Nice one.

would you please share how to keep a device safe from hackers as well not just a website? and what about apps, please? thank you.

Thank you for putting in the time and effort to create these tutorials.

PS: I'm curious -- has anyone here ever used one of the referral links and got rewarded with a premium course as promised? If you have, kindly reply.

My experience suggests that the offers might not work exactly as promised. So I would like to know if it's just me or if that's a general experience.

Well noted and thanks Adam

Thanks Adam

How about using GPL-licensed plugins or themes?

Thanks Adam for this great information. Do you prefer WPVivid vs Updraft for backup purposes?

Bye Bye Bluehost!!

Hey Adam.
Thanks for the video. What's your take on Itheme Security? Worth it?

Product again buy reminder email, like if user buy product after 45 days he get email again buy this product .. any plugin