How to Minimize the Risk of Getting Your Blog Hacked


There are some really simple things a blogger can do to minimize the risk of getting hacked easily. In this post I will summarize the most basic necessities which will make your blog a much harder target for hackers. Your blog will become virtually impenetrable for all wannabe hackers and kids fooling around on the internet.

The Basics

Always use strong passwords for accessing your blog.

Always use several security tools verified by lots of other users to harden your blog’s protection.

The Username

Most wannabe hackers will try to get into your blog by using the wp-login.php page of your WordPress blog.

Once there, they will simply try a username and password combination. There are two systems that are utilized by most hackers — random testing and dictionary attacks.

Random testing is done via the hacker’s own computer. Dictionary attacks are usually applied via zombie computers.

For guessing the username they will use:

  • the display name you post under (in my case Peter),
  • the name of your blog (in my case stosu),
  • the default WordPress username called admin,
  • or some trivial usernames such as test.

In the image to the right, you can see the IP addresses of various bad guys trying to access my blog using the above-mentioned guesswork.


List of ‘hacker’ IPs

That’s why it is a good idea not to have the same username and display name.

To check what your username and display name is, simply go to WordPress Dashboard > Users > Your Profile.

Change the Username

In case both names are the same, there are two ways to remedy the situation.

You can use the following SQL query within your database management interface such as MySQL or phpMyAdmin:

Important Note

Instead of newusername use your actual new username.

Alternatively, you can log in to your phpMyAdmin interface and manually change the user_login field’s value to your new username. The user_login field can be found within the wp_users table of your blog’s database.

If you never worked with your WordPress blog’s SQL database, you can familiarize yourself with the concept here.

Liked this post?

Subscribe to our newsletter to receive early notification of new posts and deals:
[mc4wp_form id=”45″]

Next Post »« Previous Post