Oct 10, 2013

Top 3 WordPress Security Plugins

From http://konnectingu.com/best-wordpress-security-plugins/
There are more than 700 million sites on the web and recent statistics revealed that 18.9% of them are powered by WordPress. The CMS platform receives much love from the interwebs but it is also one of the biggest targets for cyber attacks. Fortunately, it is also one of the most versatile and customizable platforms with thousands of plugins with quite a few dedicated to security. Here are the top 3 best security plugins for WordPress that all webmasters should install.

#1. Better WP Security

Better WP Security is the best solution to fix one of the most common security risks. The admin login path and username are rarely changed by the webmaster. This means that everyone knows the link and the username which opens the path for brute force attacks. Better WP Security can change the wp-content and wp-admin path changing the links. It can also remove the meta “generator” tag, login error messages and RSD header info.

Better WP Security offers some basic yet essential security controls and it should be the first thing on the list of plugins that needs to be installed the moment WordPress is configured.

#2. Wordfence

Wordfence is one of the most popular plugins for added security for WordPress. The Premium version includes a Cellphone Sign-in via SMS and also enables the admin to block certain countries. This feature makes it easy to stop brute force attacks. It also enables the creation of stronger password policies for users and admins and publishers. In addition, it can control the access of entire networks to the website by using IP and Domain WHOIS reports and public lists of malicious IPs. Additionally, it can send security reports to the network owner.

The plugin has plenty more features such as a DNS security monitor and file malware scanner that is updated constantly in order to recognize the latest suspicious codes.

Wordefnce is 100% free with the exception of the SMS sign-in feature.

#3. BulletProof Security

BulletProof Security has been praised for its ability to prevent code and SQL injection attacks. It provides the means to protect the website against XSS, RFI, CSRF and Base64 attacks.

Another popular feature of the plugin is the maintenance mode. It enables the admin to filter who gets to see his website and who will be greeted by a 503 Website Under Maintenance page. Using IP filtering, the access can be controlled directly from the plugin.

Last but not least, BulletProof Security offers a more convenient way of protecting and updating distributed configuration files without using an FTP client. It locks down critical htaccess files, wp-config.php, bb-config.php, php.ini and php5.ini.

The plugin is completely free with no additional features for users that donated. With a close to 5 star rating, BulletProof Security, the plugin is a must for all WordPress websites.
In Conclusion

These 3 plugins should cover all the security gaps in the code and setup of the default WordPress installation. They complement each other and consume very little resources. The only thing that could be added to complete the security packages is an SSL certificate for the domain.

Please note: If you are looking for an easier drag and drop solution that has built in security and is less targeted by hackers and crackers I advise you to use either Weebly  , Wix or Yola.


  1. Very useful wordpress security plugins. Your post is very much helpful for me. A big thanks for sharing with us !!

  2. Good list, nice to see someone who doesn't recommend 25+ security plugins. They are a hog on the system and seem to interfere with each other when using too many

  3. I recommend this plugin http://wordpress.org/plugins/audio-comments/

  4. Itheme security is one of my pafourite one... love it

  5. They are so good but I use WordPressA Security Plugin because it is the only one I know for prevent attacks. It works telling you which of the other plugins you have are vulnerable. Thanks to it, I can update or patching it and take my WordPress safe XD.

  6. These 3 security plugins are the top plugins for any website, thanks sharing. I'm using for my site is Wordfence. Post is really good and useful.

  7. Hi!

    I would love for you to try out our plugin here: https://wordpress.org/plugins/wp-simple-firewall/ This is quickly growing to be one of the most popular out there... it's not one of the "big" names, and we take a unique approach to security that really works.

    Please try it and let me know what you think! :)

  8. I was very impressed by this post, this site has always been pleasant news Thank you very much for such an interesting post,Media & Marketing Translations in Dubai

  9. Wow this is incredibly helpful. I’m fortunate enough to never have had any security troubles but I know a guy who got his blog hacked into and it cost him so much. Thank you so much for this article it is quite helpful.

  10. This is very nice article plus this site is also very informative i strongly agree. i use to visit this site every week
    Locksmith in Dubai

  11. Hi there!
    I find good security plugins and recommend it for you. You can find it from this sites:

  12. Thanks for the nice list of plugins. I have found Blog Designer Pro an excellent way to design an eye catching Blog page on our website https://goo.gl/KFTQ4W & Avartan Slider Pro plugins to design an awesome slider. http://avartanslider.com/

  13. Really the plugins is very helpful and strong. I can use the plugins. Thanks for posting.

    clipping path service
    clipping path
    color correctoin service