WordPress: a reminder of best practices in cybersecurity

In 2023, WordPress accounted for more than 40% of all CMSs on the internet. Its popularity makes it a prime target for cyberattacks.

• Change the back office URL /wp-admin
• Strong passwords with two-factor authentication
• Limit the number of login attempts
• Install a security plugin (Wordfence)
• Keep WordPress, plugins and themes up to date
• Regular backups to an external environment
• HTTPS certificate (free Let’s Encrypt)
• Test with WPScan