Here are some recommendations for hardening your WordPress website.
These are essential:
- Ensure that you keep your WordPress, Themes and PlugIns regularly up to date (take a backup before your run major updates).
- Only use unique usernames (do not use ‘admin’) and strong passwords.
- Install a WordPress Security PlugIn, such as WordFence.
- Limit the number of Login Attempts.