5 Easy Ways To Fix Your Insurance Agency’s WordPress Website Security
I know as an agency owner you’re busy.
You are probably balancing a bunch of different tasks right this very minute.
Unfortunately, managing your website is probably pretty low on the totem pole.
Maybe you had someone who was working on it?
The problem is if you aren’t working on it and you no longer have someone who is, then it’s just being ignored.
By ignoring your insurance agency’s WordPress website security you are leaving it vulnerable to all kinds of horrible things.
I don’t want horrible things to happen to your business.
I want to help you start taking back control over your website right now.
So here are five things you can do quickly and easily to make your website more secure.
Step 1: Stay Current With WordPress And Software Updates
WordPress along with its plugins and themes are always being updated by their developers.
The good news is WordPress will let you know when new updates are available.
You just have to make sure you apply them when they come out.
Keeping things up to date will help close any security holes that may show up over time.
Step 2: Set Up Automatic Daily Backups
What if you break something when doing an update? Or your site does get hacked?
This is where having a current (preferably, daily) back-up of your site is a must.
There are multiple ways to back-up your site but the hands-down easiest way is to use a plugin.
Backup Buddy is a simple and easy to use plug-in. It allows you to make an automatic back-up of your site and database. If you ever need to you can replace your broken or hacked site. It’s replaced with a fresh copy from before you started having issues.
And it’s free to use.
Step 3: Use Strong Passwords
This probably seems like a really obvious one.
But weak passwords are one of the easiest ways for hackers to take over a website.
I’m sure we are all guilty of using passwords that aren’t as secure as they should be.
I’ve done it myself in the past for sure.
So how in the world are you supposed to remember complicated passwords?
The best way to create a really, really good password is to use a password generator.
I highly recommend the free tool, LastPass. LastPass is safe and free software that will change your life. It will help you log and remember all the passwords you create with the click of a couple of buttons.
Now that you have strong passwords ( and a way to remember them!) which ones are we talking about when it comes to your agency’s site?
There are 5 main website logins that need to have strong passwords:
- WordPress Install
- WordPress Database
- Hosting Account
- Domain Account
- FTP Login
Step 4: Install A Highly Trusted WordPress Website Security Plugin
Installing a trusted security plugin is one of the easiest ways to up your WordPress website security. It only takes a minute and is like having a security guard watching your site 24/7.
The plugin will look for threats, let you know when people log-in and set rules that will only allow people to interact with your site in certain ways.
Here are a few security plugins that have a really good reputation in the WordPress security:
- Wordfence — https://www.wordfence.com/
- iThemes Security — https://ithemes.com/security/
- Securi — https://sucuri.net/
Any of these will work. I prefer and recommend Wordfence as it’s what I’m used to using, but you can’t go wrong with any of them.
Step 5: Install An SSL Certificate Through Your Hosting
What is an SSL Certificate?
SSL stands for Secure Socket Layer. This just means that any and all information that gets sent through your website is “hidden” behind an extra layer of security.
This makes it harder for anyone to access it or look at it while it’s being sent over the internet.
If you have one, your site’s address will start with https:// as opposed to just HTTP://. The extra “S” in there will tell you that an SSL Certificate is in use.
That’s good news.
If you don’t have that you will have to install one.
SSL Certificates are usually free but that depends on your host.
Most hosts will offer a free certificate through a company called Lets Encrypt. Some hosts charge upwards of $100 dollars though. So the cost will depend on your specific situation.
Whether you pay for it or get it for free it’s an absolute must.
Let’s Recap The Basics Of WordPress Website Security
These are the 5 basic steps that will get you on the road to better WordPress website security:
- Keep WordPress, Themes, and Plugins all up to date.
- Always have a backup of your site ready to go.
- Use strong passwords.
- Install a reputable security plugin.
- Install and configure an SSL Certificate.
I know the thought of managing your website can be kind of scary. I totally understand.
Hopefully, these 5 basic steps took a little bit of the guesswork and intimidation out of it.
Of course, this is by no means an exhaustive list.
There are a bunch more tech-savvy things you can do to harden your site’s security in the future.
But these 5 steps will provide you a quick and easy foundation to built your site’s security on.