Advertisement
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security
Level Up Your WordPress Security

Check these out next

How To Lock Down And Secure Your Wordpress
How To Lock Down And Secure Your Wordpress
Chelsea O'Brien
Securing you SQL Server
Securing you SQL Server
Gabriel Villa
XCS - Watchguard
XCS - Watchguard
INSPIRIT BRASIL
C:\fakepath\wg xcs emailsecurity 170 370 570
C:\fakepath\wg xcs emailsecurity 170 370 570
Yustinus Simon
Cyber Development
Cyber Development
Hosea Hargrett, MBA, PMP®, CISSP®
"10 Tips To Keep Cybercriminals Out While Coronavirus Keeps You In" Infographic
"10 Tips To Keep Cybercriminals Out While Coronavirus Keeps You In" Infographic
David McHale
10 Tips to Keep Criminals Out
10 Tips to Keep Criminals Out
Neil Kemp
BGA Eğitim Kataloğu
BGA Eğitim Kataloğu
Asım Önder Kabataş
1 of 44

Level Up Your WordPress Security

Jul. 14, 2017
Download to read offline
Technology

My session from #WPCampus on leveling up your WordPress Security. A 3-pronged approach (Site, Server, External)

Mitch Canter
Digital Strategist / Senior Developer
Advertisement
Advertisement
Advertisement

Recommended

How to get recover from a hacked websiteHow to get recover from a hacked website
How to get recover from a hacked websitemounika k352 views13 slides
How to avoid your website from keep getting hackedHow to avoid your website from keep getting hacked
How to avoid your website from keep getting hackedmounika k394 views17 slides
10 security enhancements10 security enhancements
10 security enhancementsVishal Gurujuwada203 views1 slide
Computer saftey adware, spyware & virusesComputer saftey adware, spyware & viruses
Computer saftey adware, spyware & virusesRozell Sneede1K views22 slides
HOW TO PROTECT YOUR WORDPRESS WEBSITE FROM HACKERSHOW TO PROTECT YOUR WORDPRESS WEBSITE FROM HACKERS
HOW TO PROTECT YOUR WORDPRESS WEBSITE FROM HACKERSElsner Technologies Pvt Ltd74 views14 slides
Joomla spécialisteJoomla spécialiste
Joomla spécialisteRomain Caisse595 views14 slides

More Related Content

Slideshows for you(15)

How To Lock Down And Secure Your WordpressHow To Lock Down And Secure Your Wordpress
How To Lock Down And Secure Your Wordpress
Chelsea O'Brien454 views
Securing you SQL ServerSecuring you SQL Server
Securing you SQL Server
Gabriel Villa415 views
XCS - WatchguardXCS - Watchguard
XCS - Watchguard
INSPIRIT BRASIL1.2K views
C:\fakepath\wg xcs emailsecurity 170 370 570C:\fakepath\wg xcs emailsecurity 170 370 570
C:\fakepath\wg xcs emailsecurity 170 370 570
Yustinus Simon13.7K views
Cyber DevelopmentCyber Development
Cyber Development
Hosea Hargrett, MBA, PMP®, CISSP®182 views
"10 Tips To Keep Cybercriminals Out While Coronavirus Keeps You In" Infographic"10 Tips To Keep Cybercriminals Out While Coronavirus Keeps You In" Infographic
"10 Tips To Keep Cybercriminals Out While Coronavirus Keeps You In" Infographic
David McHale25 views
10 Tips to Keep Criminals Out10 Tips to Keep Criminals Out
10 Tips to Keep Criminals Out
Neil Kemp245 views
BGA Eğitim KataloğuBGA Eğitim Kataloğu
BGA Eğitim Kataloğu
Asım Önder Kabataş32 views
How to protect your Mac from Malware Attacks?How to protect your Mac from Malware Attacks?
How to protect your Mac from Malware Attacks?
Simone Crete74 views
Your Guide to tackle the Ransomware threat "WannaCry" | SysforeYour Guide to tackle the Ransomware threat "WannaCry" | Sysfore
Your Guide to tackle the Ransomware threat "WannaCry" | Sysfore
Sysfore Technologies25 views
AVG antivirus 2012 discount coupon codeAVG antivirus 2012 discount coupon code
AVG antivirus 2012 discount coupon code
Discount Coupon219 views
IT Security for Small BusinessIT Security for Small Business
IT Security for Small Business
Executive Management Solutions227 views
Email attachmentsEmail attachments
Email attachments
gmyles194 views
CryptoWallCryptoWall
CryptoWall
SwiftTech Solutions, Inc.318 views
Debunking adware mythsDebunking adware myths
Debunking adware myths
Steven James392 views

Similar to Level Up Your WordPress Security(20)

302 Content Server Security Challenges And Best Practices302 Content Server Security Challenges And Best Practices
302 Content Server Security Challenges And Best Practices
phanleson2.2K views
Threat_Modelling.pdfThreat_Modelling.pdf
Threat_Modelling.pdf
MarlboroAbyad2 views
Methods Hackers UseMethods Hackers Use
Methods Hackers Use
brittanyjespersen1.1K views
Active Directory Auditing Tools: Building Blocks or just a Handful of Dust?Active Directory Auditing Tools: Building Blocks or just a Handful of Dust?
Active Directory Auditing Tools: Building Blocks or just a Handful of Dust?
BeyondTrust403 views
The hacker playbook: How to think and act like a cybercriminal to reduce risk...The hacker playbook: How to think and act like a cybercriminal to reduce risk...
The hacker playbook: How to think and act like a cybercriminal to reduce risk...
Paula Januszkiewicz5.9K views
Oracle UCM Security: Challenges and Best PracticesOracle UCM Security: Challenges and Best Practices
Oracle UCM Security: Challenges and Best Practices
Brian Huff9.8K views
Don’t Get Caught With Your Digital Assets Hanging Out!Don’t Get Caught With Your Digital Assets Hanging Out!
Don’t Get Caught With Your Digital Assets Hanging Out!
Rich Benjamin375 views
Ransomware attacks 2017Ransomware attacks 2017
Ransomware attacks 2017
Thesis Scientist Private Limited1.5K views
Hack miami emiliocasbasHack miami emiliocasbas
Hack miami emiliocasbas
Emilio Casbas4.7K views
Mitigating Rapid CyberattacksMitigating Rapid Cyberattacks
Mitigating Rapid Cyberattacks
Erdem Erdogan110 views
Cyber securityCyber security
Cyber security
Bablu Shofi157 views
Threat ModelingThreat Modeling
Threat Modeling
keyuradmin943 views
Cloud Security or: How I Learned to Stop Worrying & Love the CloudCloud Security or: How I Learned to Stop Worrying & Love the Cloud
Cloud Security or: How I Learned to Stop Worrying & Love the Cloud
MarkAnnati155 views
Protecting your business from ddos attacksProtecting your business from ddos attacks
Protecting your business from ddos attacks
Saptha Wanniarachchi1.2K views
Webinar - Tips and Tricks on Website SecurityWebinar - Tips and Tricks on Website Security
Webinar - Tips and Tricks on Website Security
StopTheHacker1K views
Bsides-Philly-2016-Finding-A-Companys-BreakPointBsides-Philly-2016-Finding-A-Companys-BreakPoint
Bsides-Philly-2016-Finding-A-Companys-BreakPoint
Zack Meyers500 views
Cyber Attack MethodologiesCyber Attack Methodologies
Cyber Attack Methodologies
Geeks Anonymes2K views
Computer Security: WormsComputer Security: Worms
Computer Security: Worms
Sabidur Rahman169 views
April2010 Sales PresentationApril2010 Sales Presentation
April2010 Sales Presentation
toddpruner196 views
3 Tips to Stay Safe Online in 20173 Tips to Stay Safe Online in 2017
3 Tips to Stay Safe Online in 2017
Bret Piatt397 views
Advertisement

More from Mitch Canter(20)

Local Development Made Easy: Multiple Methods for Local Development with Word...Local Development Made Easy: Multiple Methods for Local Development with Word...
Local Development Made Easy: Multiple Methods for Local Development with Word...
Mitch Canter236 views
WordPress Development with VVV, VV, and VagrantWordPress Development with VVV, VV, and Vagrant
WordPress Development with VVV, VV, and Vagrant
Mitch Canter3.4K views
Level Up Your Marketing: Using Gamification to Enhance Your Marketing CampaignsLevel Up Your Marketing: Using Gamification to Enhance Your Marketing Campaigns
Level Up Your Marketing: Using Gamification to Enhance Your Marketing Campaigns
Mitch Canter816 views
Understanding WordPress: The World's Most Popular Content Management SystemUnderstanding WordPress: The World's Most Popular Content Management System
Understanding WordPress: The World's Most Popular Content Management System
Mitch Canter597 views
SEO For Bloggers - TBEX 2014SEO For Bloggers - TBEX 2014
SEO For Bloggers - TBEX 2014
Mitch Canter1.8K views
Schema for Bloggers: Structured Content, DemystifiedSchema for Bloggers: Structured Content, Demystified
Schema for Bloggers: Structured Content, Demystified
Mitch Canter4K views
Get Structured, Get Sexy... Get Schema!Get Structured, Get Sexy... Get Schema!
Get Structured, Get Sexy... Get Schema!
Mitch Canter1.4K views
The Essential Tools for Before / After Your Content Goes Live!The Essential Tools for Before / After Your Content Goes Live!
The Essential Tools for Before / After Your Content Goes Live!
Mitch Canter987 views
Storytelling of Biblical ProportionsStorytelling of Biblical Proportions
Storytelling of Biblical Proportions
Mitch Canter3K views
Advanced Blog Design - New Media Expo 2013 (#nmx)Advanced Blog Design - New Media Expo 2013 (#nmx)
Advanced Blog Design - New Media Expo 2013 (#nmx)
Mitch Canter1.3K views
One Web To Rule Them All: A Look At Responsive DesignOne Web To Rule Them All: A Look At Responsive Design
One Web To Rule Them All: A Look At Responsive Design
Mitch Canter3.5K views
The Ultimate WordPress Experience for BlogWorldExpo2011 in LA (#bwela)The Ultimate WordPress Experience for BlogWorldExpo2011 in LA (#bwela)
The Ultimate WordPress Experience for BlogWorldExpo2011 in LA (#bwela)
Mitch Canter617 views
The Ultimate WordPress Experience (#podcincy)The Ultimate WordPress Experience (#podcincy)
The Ultimate WordPress Experience (#podcincy)
Mitch Canter386 views
Ultimate WordPress Experience for WordCampFayetteville #wcfayUltimate WordPress Experience for WordCampFayetteville #wcfay
Ultimate WordPress Experience for WordCampFayetteville #wcfay
Mitch Canter531 views
How To Use WordPress for D#!$ Near Anything - WordCampColumbus (#wccbus)How To Use WordPress for D#!$ Near Anything - WordCampColumbus (#wccbus)
How To Use WordPress for D#!$ Near Anything - WordCampColumbus (#wccbus)
Mitch Canter596 views
The Ultimate WordPress Experience (BlogWorldExpo '11 - #bweny)The Ultimate WordPress Experience (BlogWorldExpo '11 - #bweny)
The Ultimate WordPress Experience (BlogWorldExpo '11 - #bweny)
Mitch Canter432 views
The Ultimate WordPress Experience (for PodCampNashville #pcn11)The Ultimate WordPress Experience (for PodCampNashville #pcn11)
The Ultimate WordPress Experience (for PodCampNashville #pcn11)
Mitch Canter644 views
How to use WordPress for D*@& Near Anything - Updated for 3.0How to use WordPress for D*@& Near Anything - Updated for 3.0
How to use WordPress for D*@& Near Anything - Updated for 3.0
Mitch Canter713 views
Why Wait to be a Rock Star? (Intro to Social Media for Business)Why Wait to be a Rock Star? (Intro to Social Media for Business)
Why Wait to be a Rock Star? (Intro to Social Media for Business)
Mitch Canter1.7K views
How To Use Wordpress For Dang Near Anything Pcn10How To Use Wordpress For Dang Near Anything Pcn10
How To Use Wordpress For Dang Near Anything Pcn10
Mitch Canter1K views

Recently uploaded(20)

NS-CUK Joint Jouarl Club: JHLee, Review on "GraphMAE: Self-Supervised Masked... NS-CUK Joint Jouarl Club: JHLee, Review on "GraphMAE: Self-Supervised Masked...
NS-CUK Joint Jouarl Club: JHLee, Review on "GraphMAE: Self-Supervised Masked...
ssuser4b1f484 views
【本科生、研究生】英国卡迪夫大学毕业证文凭购买指南【本科生、研究生】英国卡迪夫大学毕业证文凭购买指南
【本科生、研究生】英国卡迪夫大学毕业证文凭购买指南
sutseu5 views
Do Reinvent the Wheel - Nov 2021 - DigiNext.pdfDo Reinvent the Wheel - Nov 2021 - DigiNext.pdf
Do Reinvent the Wheel - Nov 2021 - DigiNext.pdf
Hamidreza Soleimani6 views
Unit 5.pdfUnit 5.pdf
Unit 5.pdf
BALASHANMUGAVADIVUPM4 views
Structure.pptxStructure.pptx
Structure.pptx
MohammedOmer4015790 views
architecture of android.pptxarchitecture of android.pptx
architecture of android.pptx
allurestore0 views
Blomberg KWD2330X Service Manual.pdfBlomberg KWD2330X Service Manual.pdf
Blomberg KWD2330X Service Manual.pdf
ssuser78bec111 view
Top 10 Must.pdfTop 10 Must.pdf
Top 10 Must.pdf
Roberberry0 views
presentation.pdfpresentation.pdf
presentation.pdf
Mahdi_Fahmideh4 views
zkStudyClub - cqlin: Efficient linear operations on KZG commitments zkStudyClub - cqlin: Efficient linear operations on KZG commitments
zkStudyClub - cqlin: Efficient linear operations on KZG commitments
Alex Pruden16 views
【本科生、研究生】美国德鲁大学毕业证文凭购买指南【本科生、研究生】美国德鲁大学毕业证文凭购买指南
【本科生、研究生】美国德鲁大学毕业证文凭购买指南
sutseu3 views
Hadoop Migration to databricks cloud project plan.pptxHadoop Migration to databricks cloud project plan.pptx
Hadoop Migration to databricks cloud project plan.pptx
yashodhannn0 views
NS-CUK Seminar: V.T.Hoang, Review on "Graph Clustering with Graph Neural Netw...NS-CUK Seminar: V.T.Hoang, Review on "Graph Clustering with Graph Neural Netw...
NS-CUK Seminar: V.T.Hoang, Review on "Graph Clustering with Graph Neural Netw...
ssuser4b1f484 views
Bosch BSG8_8100 Service Manual.pdfBosch BSG8_8100 Service Manual.pdf
Bosch BSG8_8100 Service Manual.pdf
ssuser78bec113 views
Configure Network Services.pptxConfigure Network Services.pptx
Configure Network Services.pptx
YanaDangle2 views
ChIP-Sequencing ChIP-Sequencing
ChIP-Sequencing
Hajra Qayyum2 views
#9 Calicut MuleSoft Meetup - Munits in Mule 4.pptx#9 Calicut MuleSoft Meetup - Munits in Mule 4.pptx
#9 Calicut MuleSoft Meetup - Munits in Mule 4.pptx
AnoopRamachandran130 views
Swarm Intelligence Applications in Unmanned Aerial Vehicles.pdfSwarm Intelligence Applications in Unmanned Aerial Vehicles.pdf
Swarm Intelligence Applications in Unmanned Aerial Vehicles.pdf
AswathiM280 views
Raspberry pi presentation.pptxRaspberry pi presentation.pptx
Raspberry pi presentation.pptx
FrankAnthonyChin2 views
What are the Reactjs PropertiesWhat are the Reactjs Properties
What are the Reactjs Properties
TutorialsFreak8 views
Advertisement

Level Up Your WordPress Security

  1. LEVEL UP YOUR WORDPRESS SECURITY By Mitch Canter – Vanderbilt University Web Communications (@thatmitchcanter)
  2. Who am I?
  3. Mitch Canter Senior Web Developer, Vanderbilt University Web Communications
  4. SECURITY QUEST PRESS START TO BEGIN
  5. 30,000
  6. 30,000 Number of Websites Hacked PER DAY
  7. 78%
  8. 78% Built on a WordPress CMS
  9. There is no secret sauce.
  10. Goal: Reduce Risk
  11. Proactive, Not Reactive
  12. 3 PRONGED APPROACH
  13. 1. SERVER 2. SITE 3. EXTERNAL
  14. 1. SERVER CON Modifier, Hearts, Health
  15. SSH Keys Cryptographic Keys that Give Access to a Server.
  16. Isolated Execution Environments Application Specific Servers (File/Database/Etc)
  17. Single Server – Single Point of Attack
  18. Application Specific Isolated Servers
  19. Firewalls What Services are exposed?
  20. Firewall Example
  21. IPTABLES UFW FIREWALL
  22. Inclusive Vs. Exclusive
  23. File Permissions
  24. Restrict, Then Relax
  25. 644 FILES 755 FOLDERS
  26. 2. SITE Armor, Equipment, Shields
  27. KEEP WORDPRESS UPDATED
  28. No, really… KEEP WORDPRESS UPDATED
  29. 56% Percent of Out-Of-Date Hacked Websites
  30. TimThumb RevSlider Gravity Forms PS: The Panama Papers blamed on RevSlider exploit.
  31. Plugin Audits Do I REALLY need this plugin?
  32. Two Factor Authentication Multi-layer Authentication via Knowledge, Possession, or Inherance
  33. XML-RPC Limitations Code to disable via filter
  34. User Audits Do I REALLY need this user?
  35. 1. PASSWORDS 2. ACCESS
  36. “Concept of Least Privileged” Only give access to those that need it, when they need it, and only for the time they need it.
  37. 3. External “Magic” Shields, Blessings
  38. SSL Certificates Cryptographically Signed “Trust” of a Website
  39. Let’s Encrypt FREE SSL Certificates for Everyone!
  40. Sucuri Resources, Knowledge, and a Scanner Plugin
  41. Vulnerable Plugins List WPCampus Website, by Paul Gilzow
  42. Offsite Backups …just in case.
  43. Questions?
  44. Thanks! @thatmitchcanter

Editor's Notes

  1. Panama Papers blamed on RevSlider
  2. XML Data, HTTP Delivery
  3. Only give access to those that need it, when they need it, and only for the time they need it.
  4. UpDraftPlus, BackUpWordPress, VaultPress, OR Amazon S3
Advertisement