You may well have heard all the buzz online about the attacks on WordPress security. Unfortunately this is no joke, and it needs to be taken very seriously, or all you've built could be hijacked or worse, lost to you.
Installing the fix hacked wordpress Scan plugin alert you that you may have missed, and will check all this for you. It will also tell you that a user named"admin" exists. Needless to say, that is your user name. If you desire, you can follow a link and find instructions for changing that name. Personally, I think that there is a password good security, and because I followed those steps, there have been no attacks on the several sites that I run.
This is great news because it means that there is a strong community of developers and users who can further improve the platform. However, whenever there is a group there will always be people who will try to take them down.
This is quite handy plugin, protecting you against brute-force password-crack attacks. It keeps track of the IP address of every login attempt. You can configure the plugin to disable login attempts for a range of IP addresses when a certain number of attempts is reached.
Pathological-looking phrases that were whitelists and black based on which field they look within. (unknown/numeric parameters vs. known helpful site post bodies, remark bodies, etc.).
The plugin should be regularly updated have WordPress cloning, play nice with all of your plugins and to remain current with the latest WordPress release and restore capabilities. The ability to clone see your site (in addition to regular copies ) can be helpful if you ever want to do an offline website redesign, among useful reference other things.