WordPress Security for Beginners | How to secure WordPress

In a few hours every WordPress user will beef up the security of WordPress. WordPress Security is really easy!
4.1 (70 ratings)
Instead of using a simple lifetime average, Udemy calculates a
course's star rating by considering a number of different factors
such as the number of ratings, the age of ratings, and the
likelihood of fraudulent ratings.
5,684 students enrolled
Instructed by Robert Abela Design / Web Design
Start Learning Now
  • Lectures 14
  • Length 1.5 hours
  • Skill Level All Levels
  • Languages English
  • Includes Lifetime access
    30 day money back guarantee!
    Available on iOS and Android
    Certificate of Completion
Wishlisted Wishlist

How taking a course works


Find online courses made by experts from around the world.


Take your courses with you and learn anywhere, anytime.


Learn and practice real-world skills and achieve your goals.

About This Course

Published 10/2012 English

Course Description

In a few hours, every WordPress user is able to beef up the security of his WordPress installation using free tools and by following some simple steps. WordPress security is not just for experts!

The course Securing a WordPress Blog or Website for Beginners is specifically tailored for any type of WordPress user and is very easy to follow. It delivers quick and easy to implement solutions that even non-technical people can implement to secure their WordPress installation. You will learn everything you need to know to protect your WordPress blog or website from:

  • Malicious Hacker Attacks
  • Brute Force Attacks
  • Content and Images Theft

If your WordPress blog or website is your main source of income or generates some income, it is very important to secure your WordPress. Thousands of websites, especially WordPress installations are being hacked every year and definitely yours should not be one of them. For that you have to learn the basics of How to Secure Wordpress. In this WordPress Security Course we will show you in an easy to follow step-by- step format you will learn:

  • Best WordPress Security Practices
  • How to prepare a secure WordPress environment
  • How to protect WordPress from Zero-day Vulnerabilities
  • How to securely manage WordPress users and roles
  • How to choose the best & secure WordPress plugins and themes
  • And much MORE!

WordPress Security is your responsibility. Having a WordPress blog or website hacked will tarnish your business reputation, and might also results in a financial loss.

What are the requirements?

  • You will need access to the WordPress dashboard (WordPress Admin pages) and as well to the Hosting Provider C-panel, where your WordPress is hosted.

What am I going to get from this course?

  • secure a WordPress blog or website
  • Keep hackers and malware infections away from your website
  • Maintain a hacker free WordPress

What is the target audience?

  • Website owners
  • WordPress users
  • Bloggers
  • wordpress enthusiasts

What you get with this course?

Not for you? No problem.
30 day money back guarantee.

Forever yours.
Lifetime access.

Learn on the go.
Desktop, iOS and Android.

Get rewarded.
Certificate of completion.


Section 1: WordPress Pre-installation

There are a number of decisions that ideally one should take before installing WordPress. Even if you already installed WordPress, it is still worth knowing about them since you can still make such changes at a later stage.


A WordPress installation consists of a number of scripts and a MySQL database. In this lecture we discuss what security best practices you should follow when preparing for a WordPress installation.


There are several security risks in not changing the WordPress database prefixes. In this lecture we explain what the security risks are and how to make sure your WordPress installation is immune to such security risks.

363.4 kB

In the previous lecture we've seen what are the security risks of using the default WordPress database table prefixes. This document lists all the MySQL queries including examples, that you should use to change the default WordPress database table prefixes.

Section 2: WordPress Installation and Preparation

In this lecture we go through the WordPress installation procedure and what you should change during the installation to have a more secure WordPress installation. We also discuss the WordPress user roles and how you should use them to make sure your WordPress installation is secure.


There are thousands of WordPress themes and plugins available for free.In this lecture we will show you how to choose the right theme and plugin for your WordPress without compromising the security of your WordPress installation.


In this lecture we explain what are files and directories permissions, why they are important and what are the repercussions of not assigning the right permissions.

10 pages

In this document we explain what permissions WordPress files and directories should have for a secure WordPress installation. 


In this lecture we explain what MySQL database privileges a WordPress installation needs to function securely.


In this lecture we explain what htaccess files are and how such configuration files can be used to improve the security or your WordPress installation.

12 pages

Continuing on what we've learnt in the previous lecture, this document lists all the htaccess directives that can be used to secure a WordPress installation and also explains what they are. The document includes also a sample WordPress .htaccess file.

Section 3: Running WordPress Securely

Backup of your WordPress installation should always be part of your security procedures. In this lecture we explain how to make a WordPress backup in minutes.


Apart from securing your WordPress blog or website, it is also recommended to install a WordPress security plugin for better protection of your WordPress installation and if possible, subscribe to an online security service. In this lecture we explain what these are and how to choose the best solution that fits your needs.


Security is like a living thing, it keeps on changing on a daily basis. In this lecture we explain what you should do to keep your WordPress installation secure with the least of efforts.

Students Who Viewed This Course Also Viewed

  • Loading
  • Loading
  • Loading

Instructor Biography

Robert Abela, WordPress Security Specialist at WPWhiteSecurity.com

Robert Abela is a freelance information security consultant, WordPress security expert and blogger with over 13 years of experience in IT.

Before starting WP White Security (http://www.wpwhitesecurity.com), a professional WordPress Security Services and Consultancy for online businesses using WordPress, Robert served in various information technology and managerial roles for several international security software companies.

Robert started at GFI Software in 2000 as a software testing engineer. He spent 7 years at GFI Software and worked his way up to Chief Systems Administrator. At GFI Software he was responsible for the upkeep and security of the IT infrastructures of the company's European offices and of its main operation web portals. He was also responsible for the running and security of GFI Software web server farms.

The experience at GFI Software has given Robert a technical and managerial background which proved invaluable in taking over and managing the product line of Acunetix in 2007. Amongst Robert's successful projects at Acunetix was managing the birth, development and launch of the popular WordPress online security scanner WebsiteDefender.

Robert released several web security articles and whitepapers and is a frequent writer on several web security blogs, such as the Acunetix and WebsiteDefender web application security blogs. Robert has also written for popular websites renowned for being leaders in the field, such as HelpNet Security.

Ready to start learning?
Start Learning Now