SlideShare uma empresa Scribd logo

Passwords, Attacks, and Security oh My!

Michele Butcher-Jones
Michele Butcher-Jones

WordCamp Orlando 2019

Internet
1 de 42
Baixar para ler offline
Michele Butcher-Jones
 CantSpeakGeek.com Passwords, Attacks, and Security oh my! http://mlb.pw/wcord19 @michele_butcher
Michele Butcher-Jones • Lead Support Specialist at Thrive Ideas • Director of Awesomeness at 13Core • Writer of all the things at CantSpeakGeek.com • Head Shot at ShutterAndShoot.com • Beginners and Intermediate WordPress Instructor http://mlb.pw/wcord19 @michele_butcher
Why is security important? http://mlb.pw/wcord19 @michele_butcher
Many do not think security is important until it is too late. Every single day hackers find new ways to get your information. Todays features are tomorrow’s vulnerabilities. Stop them before they stop you http://mlb.pw/wcord19 @michele_butcher
Why do hackers hack? • Make bank • build a zombie army • Share their nasty code with the world • Get your information • They are bored • They want to see if they can do it http://mlb.pw/wcord19 @michele_butcher
But…Why are they hacking me? There is rarely ever a targeted hacking attack. Typically all sites are considered targets. The big and the small. http://mlb.pw/wcord19 @michele_butcher
And how do they get in? • They guess your login information • Denial of Service Attack (DDoS) • Through a file in a theme, plugin, or anything on your server where they found an exploit • Through your FTP and/or cPanel configuration http://mlb.pw/wcord19 @michele_butcher
Here is the only scary thing I will say in this talk http://mlb.pw/wcord19 @michele_butcher
You are NEVER 100% secure http://mlb.pw/wcord19 @michele_butcher
A test site or a site that might get 5 visitors a day can be hacked. It happened to me and it can happen to you. http://mlb.pw/wcord19 @michele_butcher
Don’t Let Security Make you like this guy! http://mlb.pw/wcord19 @michele_butcher
There are some simple steps to keep the hackers out http://mlb.pw/wcord19 @michele_butcher
WordPress Security Basics 101 http://mlb.pw/wcord19 @michele_butcher
Never ever never use “admin” as a username or “password” as password. NEVER!!!! Any questions? Adm1n and Pa55w0rd do not count either! http://mlb.pw/wcord19 @michele_butcher
Always use SFTP “S” is for safe!!! http://mlb.pw/wcord19 @michele_butcher
Only give users the access they need Just because they want to be an admin does not mean they should. Guest bloggers should rarely every be anything more than a contributor. http://mlb.pw/wcord19 @michele_butcher
If it is a temporary login, delete the user when the job is done If they do have posts, you can convert them to different users or make them a subscriber with limited access. http://mlb.pw/wcord19 @michele_butcher
Set up file detection Many security plugins like iThemes Security and WordFence will alert you when files have been changed http://mlb.pw/wcord19 @michele_butcher
Only keep the theme you are using and one backup theme on your site. The more themes that are on a site, the more open chances you have to a vulnerability http://mlb.pw/wcord19 @michele_butcher
Only keep the plugins you have active on your site. An uninstalled plugin is not a potential vulnerability. Use the plugins repo favorites option to keep a list of your favorite plugins http://mlb.pw/wcord19 @michele_butcher
Security Plugins • iThemes Security (Free and Pro version) • Sucuri Firewall • WordFence Security • Jetpack with Brute Protect and Vault Press • SecuPress http://mlb.pw/wcord19 @michele_butcher
Always make backups! • Backup Buddy, UpDraftPlus, BackWPUp • Always save to someplace OTHER than your server • Save them to Dropbox, AWS, email, or your local machine • Have them scheduled to be made daily or at least weekly http://mlb.pw/wcord19 @michele_butcher
Malware Scanning? Do I need it? • Google Webmaster Tools
 • Sucuri Scanner
 • VirusTotal If you feel your site could be infected, first do a malware scan http://mlb.pw/wcord19 @michele_butcher
What else can I do to protect my site? http://mlb.pw/wcord19 @michele_butcher
Update! Update! Update! Update core. Update themes update plugins! The biggest reasons of updates is typically security or feature related. The biggest source of nearly all hacks is due to lack of updating. http://mlb.pw/wcord19 @michele_butcher
If you use Envato products (ThemeForest and CodeCanyon) always check the box in the downloads to be notified of updates. That is the only way you will know if any of their products need to be updated. This is why the RevSlider infection was so widespread. Many did not even know the plugin was built into their theme. http://mlb.pw/wcord19 @michele_butcher
Don't ever let your site get too lonely. That is when the zombies come. 
 Nobody wants the zombies to come http://mlb.pw/wcord19 @michele_butcher
If the unthinkable happens and you do get hacked, it is not the end of the world. It can and will be fixed. http://mlb.pw/wcord19 @michele_butcher
Who can clean my hacked website? Sucuri
 SiteLock
 Hack Repair
 Wp Security Lock http://mlb.pw/wcord19 @michele_butcher
Great! Are there any other ways I can be secure? http://mlb.pw/wcord19 @michele_butcher
Always use complex passwords http://mlb.pw/wcord19 @michele_butcher
Never email passwords http://mlb.pw/wcord19 @michele_butcher
Never use the same password twice http://mlb.pw/wcord19 @michele_butcher
Use a Password Keeper • Last Pass • One Password • KeePass http://mlb.pw/wcord19 @michele_butcher
If a login has a Two-Factor Authentication, USE IT! http://mlb.pw/wcord19 @michele_butcher
Anti-virus! Use it on all the things. Yes, even a Mac! http://mlb.pw/wcord19 @michele_butcher
Be conscious when using public WiFi http://mlb.pw/wcord19 @michele_butcher
Use a VPN if you use Public WiFi • Torguard • Cloak (Mac only) • Site Social • Hide My Ass http://mlb.pw/wcord19 @michele_butcher
Update! Update! Update! http://mlb.pw/wcord19 @michele_butcher
Back everything up and back it up often! No one wants to lose their information stored on their computer. • Bitcasa • Caronbinte • External Harddrives http://mlb.pw/wcord19 @michele_butcher
Questions? http://mlb.pw/wcord19 @michele_butcher
Thank you!!! Michele Butcher-Jones @michele_butcher Slides can be found at http://mlb.pw/wcord19

Recomendados

Passwords, Attacks, and Security oh my!
Passwords, Attacks, and Security oh my!Passwords, Attacks, and Security oh my!
Passwords, Attacks, and Security oh my!
Michele Butcher-Jones
 
Security Isn't Scary and It's Not Rocket Science either.
Security Isn't Scary and It's Not Rocket Science either.Security Isn't Scary and It's Not Rocket Science either.
Security Isn't Scary and It's Not Rocket Science either.
Michele Butcher-Jones
 
Are You Safe From Hackers
Are You Safe From HackersAre You Safe From Hackers
Are You Safe From Hackers
Michele Butcher-Jones
 
Passwords, Attakcks, and Security, oh my!
Passwords, Attakcks, and Security, oh my!Passwords, Attakcks, and Security, oh my!
Passwords, Attakcks, and Security, oh my!
Michele Butcher
 
Beginning WordPress Security WordCamp North Canton 2015
Beginning WordPress Security WordCamp North Canton 2015Beginning WordPress Security WordCamp North Canton 2015
Beginning WordPress Security WordCamp North Canton 2015
Michele Butcher-Jones
 
Keep Your SIte Secure
Keep Your SIte SecureKeep Your SIte Secure
Keep Your SIte Secure
Michele Butcher-Jones
 
Protect Thy Computer and Thyself
Protect Thy Computer and ThyselfProtect Thy Computer and Thyself
Protect Thy Computer and Thyself
iLinkoln Meetup
 
Using Varnish with WordPress (#wcilm)
Using Varnish with WordPress (#wcilm)Using Varnish with WordPress (#wcilm)
Using Varnish with WordPress (#wcilm)
Tiffany Kuchta
 

Recomendados

Passwords, Attacks, and Security oh my!
Passwords, Attacks, and Security oh my!Passwords, Attacks, and Security oh my!
Passwords, Attacks, and Security oh my!
Michele Butcher-Jones
 
Security Isn't Scary and It's Not Rocket Science either.
Security Isn't Scary and It's Not Rocket Science either.Security Isn't Scary and It's Not Rocket Science either.
Security Isn't Scary and It's Not Rocket Science either.
Michele Butcher-Jones
 
Are You Safe From Hackers
Are You Safe From HackersAre You Safe From Hackers
Are You Safe From Hackers
Michele Butcher-Jones
 
Passwords, Attakcks, and Security, oh my!
Passwords, Attakcks, and Security, oh my!Passwords, Attakcks, and Security, oh my!
Passwords, Attakcks, and Security, oh my!
Michele Butcher
 
Beginning WordPress Security WordCamp North Canton 2015
Beginning WordPress Security WordCamp North Canton 2015Beginning WordPress Security WordCamp North Canton 2015
Beginning WordPress Security WordCamp North Canton 2015
Michele Butcher-Jones
 
Keep Your SIte Secure
Keep Your SIte SecureKeep Your SIte Secure
Keep Your SIte Secure
Michele Butcher-Jones
 
Protect Thy Computer and Thyself
Protect Thy Computer and ThyselfProtect Thy Computer and Thyself
Protect Thy Computer and Thyself
iLinkoln Meetup
 
Using Varnish with WordPress (#wcilm)
Using Varnish with WordPress (#wcilm)Using Varnish with WordPress (#wcilm)
Using Varnish with WordPress (#wcilm)
Tiffany Kuchta
 
WP Security - Master Class #SMWLagos2014
WP Security - Master Class #SMWLagos2014WP Security - Master Class #SMWLagos2014
WP Security - Master Class #SMWLagos2014
sabinovates
 
WordPress Security Essentials
WordPress Security EssentialsWordPress Security Essentials
WordPress Security Essentials
Angela Bowman
 
From monolith to modern frontend
From monolith to modern frontendFrom monolith to modern frontend
From monolith to modern frontend
Leon Bezuidenhout
 
WordPress Security - How to Secure your WordPress Site
WordPress Security - How to Secure your WordPress SiteWordPress Security - How to Secure your WordPress Site
WordPress Security - How to Secure your WordPress Site
Rupok Chowdhury Protik
 
20 tips in 20 Minutes
20 tips in 20 Minutes20 tips in 20 Minutes
20 tips in 20 Minutes
MacPeople MUG
 
8 Most Popular Joomla Hacks & How To Avoid Them
8 Most Popular Joomla Hacks & How To Avoid Them8 Most Popular Joomla Hacks & How To Avoid Them
8 Most Popular Joomla Hacks & How To Avoid Them
SiteGround.com
 
Secrets to a Hack-Proof Joomla Revealed
Secrets to a Hack-Proof Joomla RevealedSecrets to a Hack-Proof Joomla Revealed
Secrets to a Hack-Proof Joomla Revealed
SiteGround.com
 
GoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from withinGoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from within
IMMUNIO
 
Securing your website from being hacked!
Securing your website from being hacked!Securing your website from being hacked!
Securing your website from being hacked!
Automatem Ltd
 
Twitter on Rails
Twitter on RailsTwitter on Rails
Twitter on Rails
Michael Bleigh
 
State of Web Security RailsConf 2016
State of Web Security RailsConf 2016State of Web Security RailsConf 2016
State of Web Security RailsConf 2016
IMMUNIO
 
RailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching VulnerabilitiesRailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
IMMUNIO
 
Restore From Trash Mac are Now Possible
Restore From Trash Mac are Now PossibleRestore From Trash Mac are Now Possible
Restore From Trash Mac are Now Possible
restorefromtrash-mac
 
8 Simple Ways to Hack Your Joomla
8 Simple Ways to Hack Your Joomla8 Simple Ways to Hack Your Joomla
8 Simple Ways to Hack Your Joomla
SiteGround.com
 
Thomas_Micah_PPP
Thomas_Micah_PPPThomas_Micah_PPP
Thomas_Micah_PPP
Micah Thomas
 
106學年度 新聞英文(ALE149) TOPIC:Amazon key
106學年度 新聞英文(ALE149) TOPIC:Amazon key106學年度 新聞英文(ALE149) TOPIC:Amazon key
106學年度 新聞英文(ALE149) TOPIC:Amazon key
bk201bk201
 
世界標準パブリッシングプラットホーム WordPress
世界標準パブリッシングプラットホーム WordPress世界標準パブリッシングプラットホーム WordPress
世界標準パブリッシングプラットホーム WordPress
Naoko Takano
 
Pay pal
Pay palPay pal
Pay pal
Willem Kuypers
 
Secure wordpress site
Secure wordpress siteSecure wordpress site
Secure wordpress site
firojkhansahu
 
Web browser(16 03-2018)
Web browser(16 03-2018)Web browser(16 03-2018)
Web browser(16 03-2018)
Batra Computer Centre
 
Intro to Security (Beginner's Edition) WordCamp St. Louis 2015
Intro to Security (Beginner's Edition) WordCamp St. Louis 2015Intro to Security (Beginner's Edition) WordCamp St. Louis 2015
Intro to Security (Beginner's Edition) WordCamp St. Louis 2015
Michele Butcher-Jones
 
Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?
Michele Butcher-Jones
 

Mais conteúdo relacionado

Mais procurados

Securing your website from being hacked!
Securing your website from being hacked!Securing your website from being hacked!
Securing your website from being hacked!
Automatem Ltd
 
Restore From Trash Mac are Now Possible
Restore From Trash Mac are Now PossibleRestore From Trash Mac are Now Possible
Restore From Trash Mac are Now Possible
restorefromtrash-mac
 

Mais procurados (20)

WP Security - Master Class #SMWLagos2014
WP Security - Master Class #SMWLagos2014WP Security - Master Class #SMWLagos2014
WP Security - Master Class #SMWLagos2014
 
WordPress Security Essentials
WordPress Security EssentialsWordPress Security Essentials
WordPress Security Essentials
 
From monolith to modern frontend
From monolith to modern frontendFrom monolith to modern frontend
From monolith to modern frontend
 
WordPress Security - How to Secure your WordPress Site
WordPress Security - How to Secure your WordPress SiteWordPress Security - How to Secure your WordPress Site
WordPress Security - How to Secure your WordPress Site
 
20 tips in 20 Minutes
20 tips in 20 Minutes20 tips in 20 Minutes
20 tips in 20 Minutes
 
8 Most Popular Joomla Hacks & How To Avoid Them
8 Most Popular Joomla Hacks & How To Avoid Them8 Most Popular Joomla Hacks & How To Avoid Them
8 Most Popular Joomla Hacks & How To Avoid Them
 
Secrets to a Hack-Proof Joomla Revealed
Secrets to a Hack-Proof Joomla RevealedSecrets to a Hack-Proof Joomla Revealed
Secrets to a Hack-Proof Joomla Revealed
 
GoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from withinGoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from within
 
Securing your website from being hacked!
Securing your website from being hacked!Securing your website from being hacked!
Securing your website from being hacked!
 
Twitter on Rails
Twitter on RailsTwitter on Rails
Twitter on Rails
 
State of Web Security RailsConf 2016
State of Web Security RailsConf 2016State of Web Security RailsConf 2016
State of Web Security RailsConf 2016
 
RailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching VulnerabilitiesRailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
 
Restore From Trash Mac are Now Possible
Restore From Trash Mac are Now PossibleRestore From Trash Mac are Now Possible
Restore From Trash Mac are Now Possible
 
8 Simple Ways to Hack Your Joomla
8 Simple Ways to Hack Your Joomla8 Simple Ways to Hack Your Joomla
8 Simple Ways to Hack Your Joomla
 
Thomas_Micah_PPP
Thomas_Micah_PPPThomas_Micah_PPP
Thomas_Micah_PPP
 
106學年度 新聞英文(ALE149) TOPIC:Amazon key
106學年度 新聞英文(ALE149) TOPIC:Amazon key106學年度 新聞英文(ALE149) TOPIC:Amazon key
106學年度 新聞英文(ALE149) TOPIC:Amazon key
 
世界標準パブリッシングプラットホーム WordPress
世界標準パブリッシングプラットホーム WordPress世界標準パブリッシングプラットホーム WordPress
世界標準パブリッシングプラットホーム WordPress
 
Pay pal
Pay palPay pal
Pay pal
 
Secure wordpress site
Secure wordpress siteSecure wordpress site
Secure wordpress site
 
Web browser(16 03-2018)
Web browser(16 03-2018)Web browser(16 03-2018)
Web browser(16 03-2018)
 

Semelhante a Passwords, Attacks, and Security oh My!

WordPress Security Essentials WordCamp Denver 2012
WordPress Security Essentials WordCamp Denver 2012WordPress Security Essentials WordCamp Denver 2012
WordPress Security Essentials WordCamp Denver 2012
Angela Bowman
 
8 Most Common Joomla! Hacks and How to Avoid Them
8 Most Common Joomla! Hacks and How to Avoid Them8 Most Common Joomla! Hacks and How to Avoid Them
8 Most Common Joomla! Hacks and How to Avoid Them
Daniel Kanchev
 
Strategies for securing your banks & enterprises (from someone who robs bank...
Strategies for securing your banks & enterprises (from someone who robs bank... Strategies for securing your banks & enterprises (from someone who robs bank...
Strategies for securing your banks & enterprises (from someone who robs bank...
ITCamp
 
The Internet of Insecure Things: 10 Most Wanted List
The Internet of Insecure Things: 10 Most Wanted ListThe Internet of Insecure Things: 10 Most Wanted List
The Internet of Insecure Things: 10 Most Wanted List
Security Weekly
 
Building a low cost hack lab
Building a low cost hack labBuilding a low cost hack lab
Building a low cost hack lab
Joe McCray
 

Semelhante a Passwords, Attacks, and Security oh My! (20)

Intro to Security (Beginner's Edition) WordCamp St. Louis 2015
Intro to Security (Beginner's Edition) WordCamp St. Louis 2015Intro to Security (Beginner's Edition) WordCamp St. Louis 2015
Intro to Security (Beginner's Edition) WordCamp St. Louis 2015
 
Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?
 
WordPress Security Essentials WordCamp Denver 2012
WordPress Security Essentials WordCamp Denver 2012WordPress Security Essentials WordCamp Denver 2012
WordPress Security Essentials WordCamp Denver 2012
 
Sucuri Webinar: How to identify and clean a hacked Joomla! website
Sucuri Webinar: How to identify and clean a hacked Joomla! websiteSucuri Webinar: How to identify and clean a hacked Joomla! website
Sucuri Webinar: How to identify and clean a hacked Joomla! website
 
So i have a website now what?
So i have a website now what?So i have a website now what?
So i have a website now what?
 
I Have My WordPress Site Now What?
I Have My WordPress Site Now What?I Have My WordPress Site Now What?
I Have My WordPress Site Now What?
 
Building Secure WordPress Sites
Building Secure WordPress Sites Building Secure WordPress Sites
Building Secure WordPress Sites
 
Securing your WordPress website - New Port Richey WP Meetup
Securing your WordPress website - New Port Richey WP MeetupSecuring your WordPress website - New Port Richey WP Meetup
Securing your WordPress website - New Port Richey WP Meetup
 
Thoughts on Defensive Development for Sitecore
Thoughts on Defensive Development for SitecoreThoughts on Defensive Development for Sitecore
Thoughts on Defensive Development for Sitecore
 
How to Secure your WordPress Website - WordCamp UK 2014
How to Secure your WordPress Website - WordCamp UK 2014How to Secure your WordPress Website - WordCamp UK 2014
How to Secure your WordPress Website - WordCamp UK 2014
 
8 Most Common Joomla! Hacks and How to Avoid Them
8 Most Common Joomla! Hacks and How to Avoid Them8 Most Common Joomla! Hacks and How to Avoid Them
8 Most Common Joomla! Hacks and How to Avoid Them
 
WPSecurity best practices of securing a word press website
WPSecurity best practices of securing a word press websiteWPSecurity best practices of securing a word press website
WPSecurity best practices of securing a word press website
 
Strategies for securing your banks & enterprises (from someone who robs bank...
Strategies for securing your banks & enterprises (from someone who robs bank... Strategies for securing your banks & enterprises (from someone who robs bank...
Strategies for securing your banks & enterprises (from someone who robs bank...
 
What To Do Post-Launch: How To Care For Your Brand New WordPress Site
What To Do Post-Launch: How To Care For Your Brand New WordPress SiteWhat To Do Post-Launch: How To Care For Your Brand New WordPress Site
What To Do Post-Launch: How To Care For Your Brand New WordPress Site
 
The Internet of Insecure Things: 10 Most Wanted List
The Internet of Insecure Things: 10 Most Wanted ListThe Internet of Insecure Things: 10 Most Wanted List
The Internet of Insecure Things: 10 Most Wanted List
 
Building a low cost hack lab
Building a low cost hack labBuilding a low cost hack lab
Building a low cost hack lab
 
Cyber security awareness presentation nepal
Cyber security awareness presentation nepalCyber security awareness presentation nepal
Cyber security awareness presentation nepal
 
Ransomware - what is it, how to protect against it
Ransomware - what is it, how to protect against itRansomware - what is it, how to protect against it
Ransomware - what is it, how to protect against it
 
The Internet Of Insecure Things: 10 Most Wanted List - Derbycon 2014
The Internet Of Insecure Things: 10 Most Wanted List - Derbycon 2014The Internet Of Insecure Things: 10 Most Wanted List - Derbycon 2014
The Internet Of Insecure Things: 10 Most Wanted List - Derbycon 2014
 
Year 7 - Week 5 esafety
Year 7 - Week 5 esafetyYear 7 - Week 5 esafety
Year 7 - Week 5 esafety
 

Mais de Michele Butcher-Jones

Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...
Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...
Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...
Michele Butcher-Jones
 

Mais de Michele Butcher-Jones (20)

Onboarding Clients Does Not have to take a Miracle to get all the things! - W...
Onboarding Clients Does Not have to take a Miracle to get all the things! - W...Onboarding Clients Does Not have to take a Miracle to get all the things! - W...
Onboarding Clients Does Not have to take a Miracle to get all the things! - W...
 
The Importance of Maintenance
The Importance of MaintenanceThe Importance of Maintenance
The Importance of Maintenance
 
Elevating Customer Experiences
Elevating Customer ExperiencesElevating Customer Experiences
Elevating Customer Experiences
 
You Don't Have to be Crazy to Work Here! A Mental Health Check
You Don't Have to be Crazy to Work Here! A Mental Health CheckYou Don't Have to be Crazy to Work Here! A Mental Health Check
You Don't Have to be Crazy to Work Here! A Mental Health Check
 
WordPress London: Creating a 5 Star Customer Experience
WordPress London: Creating a 5 Star Customer ExperienceWordPress London: Creating a 5 Star Customer Experience
WordPress London: Creating a 5 Star Customer Experience
 
Demons in the Closet - Handling your mental health while working remotely and...
Demons in the Closet - Handling your mental health while working remotely and...Demons in the Closet - Handling your mental health while working remotely and...
Demons in the Closet - Handling your mental health while working remotely and...
 
Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...
Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...
Successful Teams are Created when Everyone Leads - Shift-Enter Charlottesvill...
 
The Five Star Customer Experience
The Five Star Customer ExperienceThe Five Star Customer Experience
The Five Star Customer Experience
 
Taming the Demons in the Closet
Taming the Demons in the ClosetTaming the Demons in the Closet
Taming the Demons in the Closet
 
My website is live now what?
My website is live now what?My website is live now what?
My website is live now what?
 
WordCamp St Louis 2018 Contributing Without Coding
WordCamp St Louis 2018 Contributing Without CodingWordCamp St Louis 2018 Contributing Without Coding
WordCamp St Louis 2018 Contributing Without Coding
 
Contributing to WordPress without Coding
Contributing to WordPress without CodingContributing to WordPress without Coding
Contributing to WordPress without Coding
 
The Five Star Customer Service Experience
The Five Star Customer Service ExperienceThe Five Star Customer Service Experience
The Five Star Customer Service Experience
 
Demons In The Closet - A look at Mental Health with Remote Wokers WordCamp St...
Demons In The Closet - A look at Mental Health with Remote Wokers WordCamp St...Demons In The Closet - A look at Mental Health with Remote Wokers WordCamp St...
Demons In The Closet - A look at Mental Health with Remote Wokers WordCamp St...
 
Demons in the Closet WordCamp Montreal 2016
Demons in the Closet WordCamp Montreal 2016Demons in the Closet WordCamp Montreal 2016
Demons in the Closet WordCamp Montreal 2016
 
Jetpack All The Things
Jetpack All The ThingsJetpack All The Things
Jetpack All The Things
 
WordPress for beginners lesson 4 fall2015 JALC
WordPress for beginners lesson 4 fall2015 JALCWordPress for beginners lesson 4 fall2015 JALC
WordPress for beginners lesson 4 fall2015 JALC
 
Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015
 
Beginners WordPress JALC Lesson 2
Beginners WordPress JALC Lesson 2Beginners WordPress JALC Lesson 2
Beginners WordPress JALC Lesson 2
 
WordPress For Beginners Lesson 1 JALC Fall 2015
WordPress For Beginners Lesson 1 JALC Fall 2015WordPress For Beginners Lesson 1 JALC Fall 2015
WordPress For Beginners Lesson 1 JALC Fall 2015
 

Último

📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
@Chandigarh #call #Girls 9053900678 @Call #Girls in @Punjab 9053900678
 
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
SUHANI PANDEY
 
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 
𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...
𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...
𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...
Neha Pandey
 
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Delhi Call girls
 
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Call Girls In Delhi Whatsup 9873940964 Enjoy Unlimited Pleasure
 
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
SUHANI PANDEY
 
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
SUHANI PANDEY
 
Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...
Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...
Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...
SUHANI PANDEY
 
Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...
Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...
Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...
SUHANI PANDEY
 
💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
nirzagarg
 
Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...
Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...
Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...
tanu pandey
 
Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...
Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...
Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...
SUHANI PANDEY
 
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
SUHANI PANDEY
 

Último (20)

📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
 
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
 
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
 
𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...
𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...
𓀤Call On 7877925207 𓀤 Ahmedguda Call Girls Hot Model With Sexy Bhabi Ready Fo...
 
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
 
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
 
20240508 QFM014 Elixir Reading List April 2024.pdf
20240508 QFM014 Elixir Reading List April 2024.pdf20240508 QFM014 Elixir Reading List April 2024.pdf
20240508 QFM014 Elixir Reading List April 2024.pdf
 
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
 
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
 
20240507 QFM013 Machine Intelligence Reading List April 2024.pdf
20240507 QFM013 Machine Intelligence Reading List April 2024.pdf20240507 QFM013 Machine Intelligence Reading List April 2024.pdf
20240507 QFM013 Machine Intelligence Reading List April 2024.pdf
 
Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...
Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...
Pirangut | Call Girls Pune Phone No 8005736733 Elite Escort Service Available...
 
Real Men Wear Diapers T Shirts sweatshirt
Real Men Wear Diapers T Shirts sweatshirtReal Men Wear Diapers T Shirts sweatshirt
Real Men Wear Diapers T Shirts sweatshirt
 
20240510 QFM016 Irresponsible AI Reading List April 2024.pdf
20240510 QFM016 Irresponsible AI Reading List April 2024.pdf20240510 QFM016 Irresponsible AI Reading List April 2024.pdf
20240510 QFM016 Irresponsible AI Reading List April 2024.pdf
 
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service AvailableCall Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
 
"Boost Your Digital Presence: Partner with a Leading SEO Agency"
"Boost Your Digital Presence: Partner with a Leading SEO Agency""Boost Your Digital Presence: Partner with a Leading SEO Agency"
"Boost Your Digital Presence: Partner with a Leading SEO Agency"
 
Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...
Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...
Russian Call Girls Pune (Adult Only) 8005736733 Escort Service 24x7 Cash Pay...
 
💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Bilaspur Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
 
Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...
Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...
Katraj ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready For S...
 
Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...
Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...
Wagholi & High Class Call Girls Pune Neha 8005736733 | 100% Gennuine High Cla...
 
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
 

Passwords, Attacks, and Security oh My!

  • 1. Michele Butcher-Jones
 CantSpeakGeek.com Passwords, Attacks, and Security oh my! http://mlb.pw/wcord19 @michele_butcher
  • 2. Michele Butcher-Jones • Lead Support Specialist at Thrive Ideas • Director of Awesomeness at 13Core • Writer of all the things at CantSpeakGeek.com • Head Shot at ShutterAndShoot.com • Beginners and Intermediate WordPress Instructor http://mlb.pw/wcord19 @michele_butcher
  • 3. Why is security important? http://mlb.pw/wcord19 @michele_butcher
  • 4. Many do not think security is important until it is too late. Every single day hackers find new ways to get your information. Todays features are tomorrow’s vulnerabilities. Stop them before they stop you http://mlb.pw/wcord19 @michele_butcher
  • 5. Why do hackers hack? • Make bank • build a zombie army • Share their nasty code with the world • Get your information • They are bored • They want to see if they can do it http://mlb.pw/wcord19 @michele_butcher
  • 6. But…Why are they hacking me? There is rarely ever a targeted hacking attack. Typically all sites are considered targets. The big and the small. http://mlb.pw/wcord19 @michele_butcher
  • 7. And how do they get in? • They guess your login information • Denial of Service Attack (DDoS) • Through a file in a theme, plugin, or anything on your server where they found an exploit • Through your FTP and/or cPanel configuration http://mlb.pw/wcord19 @michele_butcher
  • 8. Here is the only scary thing I will say in this talk http://mlb.pw/wcord19 @michele_butcher
  • 9. You are NEVER 100% secure http://mlb.pw/wcord19 @michele_butcher
  • 10. A test site or a site that might get 5 visitors a day can be hacked. It happened to me and it can happen to you. http://mlb.pw/wcord19 @michele_butcher
  • 11. Don’t Let Security Make you like this guy! http://mlb.pw/wcord19 @michele_butcher
  • 12. There are some simple steps to keep the hackers out http://mlb.pw/wcord19 @michele_butcher
  • 14. Never ever never use “admin” as a username or “password” as password. NEVER!!!! Any questions? Adm1n and Pa55w0rd do not count either! http://mlb.pw/wcord19 @michele_butcher
  • 15. Always use SFTP “S” is for safe!!! http://mlb.pw/wcord19 @michele_butcher
  • 16. Only give users the access they need Just because they want to be an admin does not mean they should. Guest bloggers should rarely every be anything more than a contributor. http://mlb.pw/wcord19 @michele_butcher
  • 17. If it is a temporary login, delete the user when the job is done If they do have posts, you can convert them to different users or make them a subscriber with limited access. http://mlb.pw/wcord19 @michele_butcher
  • 18. Set up file detection Many security plugins like iThemes Security and WordFence will alert you when files have been changed http://mlb.pw/wcord19 @michele_butcher
  • 19. Only keep the theme you are using and one backup theme on your site. The more themes that are on a site, the more open chances you have to a vulnerability http://mlb.pw/wcord19 @michele_butcher
  • 20. Only keep the plugins you have active on your site. An uninstalled plugin is not a potential vulnerability. Use the plugins repo favorites option to keep a list of your favorite plugins http://mlb.pw/wcord19 @michele_butcher
  • 21. Security Plugins • iThemes Security (Free and Pro version) • Sucuri Firewall • WordFence Security • Jetpack with Brute Protect and Vault Press • SecuPress http://mlb.pw/wcord19 @michele_butcher
  • 22. Always make backups! • Backup Buddy, UpDraftPlus, BackWPUp • Always save to someplace OTHER than your server • Save them to Dropbox, AWS, email, or your local machine • Have them scheduled to be made daily or at least weekly http://mlb.pw/wcord19 @michele_butcher
  • 23. Malware Scanning? Do I need it? • Google Webmaster Tools
 • Sucuri Scanner
 • VirusTotal If you feel your site could be infected, first do a malware scan http://mlb.pw/wcord19 @michele_butcher
  • 24. What else can I do to protect my site? http://mlb.pw/wcord19 @michele_butcher
  • 25. Update! Update! Update! Update core. Update themes update plugins! The biggest reasons of updates is typically security or feature related. The biggest source of nearly all hacks is due to lack of updating. http://mlb.pw/wcord19 @michele_butcher
  • 26. If you use Envato products (ThemeForest and CodeCanyon) always check the box in the downloads to be notified of updates. That is the only way you will know if any of their products need to be updated. This is why the RevSlider infection was so widespread. Many did not even know the plugin was built into their theme. http://mlb.pw/wcord19 @michele_butcher
  • 27. Don't ever let your site get too lonely. That is when the zombies come. 
 Nobody wants the zombies to come http://mlb.pw/wcord19 @michele_butcher
  • 28. If the unthinkable happens and you do get hacked, it is not the end of the world. It can and will be fixed. http://mlb.pw/wcord19 @michele_butcher
  • 29. Who can clean my hacked website? Sucuri
 SiteLock
 Hack Repair
 Wp Security Lock http://mlb.pw/wcord19 @michele_butcher
  • 30. Great! Are there any other ways I can be secure? http://mlb.pw/wcord19 @michele_butcher
  • 33. Never use the same password twice http://mlb.pw/wcord19 @michele_butcher
  • 34. Use a Password Keeper • Last Pass • One Password • KeePass http://mlb.pw/wcord19 @michele_butcher
  • 35. If a login has a Two-Factor Authentication, USE IT! http://mlb.pw/wcord19 @michele_butcher
  • 36. Anti-virus! Use it on all the things. Yes, even a Mac! http://mlb.pw/wcord19 @michele_butcher
  • 37. Be conscious when using public WiFi http://mlb.pw/wcord19 @michele_butcher
  • 38. Use a VPN if you use Public WiFi • Torguard • Cloak (Mac only) • Site Social • Hide My Ass http://mlb.pw/wcord19 @michele_butcher
  • 40. Back everything up and back it up often! No one wants to lose their information stored on their computer. • Bitcasa • Caronbinte • External Harddrives http://mlb.pw/wcord19 @michele_butcher
  • 42. Thank you!!! Michele Butcher-Jones @michele_butcher Slides can be found at http://mlb.pw/wcord19