WordPress Security : Comprehensive, but Easy

WordPress security doesn't have to be confusing. Discover how to properly secure and protect your WordPress website...
4.6 (63 ratings)
Instead of using a simple lifetime average, Udemy calculates a
course's star rating by considering a number of different factors
such as the number of ratings, the age of ratings, and the
likelihood of fraudulent ratings.
3,170 students enrolled Bestselling in WordPress
84% off
Take This Course
  • Lectures 55
  • Length 5 hours
  • Skill Level All Levels
  • Languages English
  • Includes Lifetime access
    30 day money back guarantee!
    Available on iOS and Android
    Certificate of Completion
Wishlisted Wishlist

How taking a course works


Find online courses made by experts from around the world.


Take your courses with you and learn anywhere, anytime.


Learn and practice real-world skills and achieve your goals.

About This Course

Published 10/2014 English

Course Description

*** A Recent Customer Said...

Very comprehensive course

Chris O'Connor does a fantastic job clearly explaining how to secure your Wordpress site: from installs and plug-ins, from back-ups to clean-ups, and even best practices for purchasing themes and plug-ins. This course is worth every cent.

30,000 Web Sites Are Hacked EVERY Day...

...and most website owners don't even know their site is one of them

There is a common misconception that viruses and malware are distributed by porn sites, gambling sites, or other sites of a dubious nature. But nothing could be further from the truth. It's small businesses, the personal blogger, the hobbyist. Basically, the sites you least expect to be spreading malware, and they are also the sites that least expect to get hacked - and usually the ones that are the least prepared for it when it actually happens.

It's a Numbers Game

WordPress is a great platform on which to build a web site, and it's estimated that it now powers around 25% of all web sites - and that makes it a target for hackers.

With a standard platform for the hackers to target they can try and infect tens of thousands of sites, and there is an excellent chance they will break into a significant percentage of them. For them it's just a numbers game. It's nothing personal against you.

You Probably Don't Even Know That Your Site Is ALREADY Infected!

Most of us have seen websites that have been defaced. The reality is that these are NOT the norm, because most people putting malware on your site DON'T want you to know it is there. Unlike the script kiddies who deface your site to show off to their friends, the REAL bad guys want to get as much use out of your site as they can, and are hoping to stay on it for as long as possible.

Chances are, completely unknown to you, your website could be being used for...

  • Phishing exploits, stealing sensitive information from unsuspecting members of the public
  • Pharma hacks, advertising viagra, and who knows what else!
  • Hosting child porn, or just about anything else
  • Spreading more malware or viruses to other sites
  • Stealing personal credit card details or other information from your customers - the very people who have put their trust in you

Before you know it your site is blacklisted by Google, and they are warning people not to visit your site because 'This site may harm your computer'. People stop visiting your site, customers find other (safer) places to meet their needs, and your business nosedives. Everything you worked so hard to build up could be lost virtually overnight and your reputation left in tatters.

Opening up your website and realising that someone else has broken in and used you, and your site, for their own ends leaves a sickening feeling in your stomach. It's a feeling of fear, dread, panic, and of being violated...

But It DOESN'T have To Be This Way! There Is A Solution...

...and the steps you need to take to avoid all of this DON'T require you to be a computer expert or a WordPress security guru. If you were able to get your WordPress site off the ground then you almost certainly have all the skills necessary to put in place everything recommended in this course, and if you are in any doubt then I make it really easy for you, taking you step by step through exactly what you need to do to make YOUR site as hackerproof as possible.

Just implement what you are shown in this course and you can sleep easy at night knowing that you have done everything possible to protect yourself, your customers, and your business.

My Guarantee To You

I'm 100% confident that this is the best WordPress security course available anywhere, at any price. So here's my guarantee to you -- take this course now, check it out, and if at any point in the next 30 days you disagree with me, then you simply ask for a refund. You'll get every penny of your money back - no questions asked. That's how confident I am that you will find this course perfect for your needs. So go ahead, take this course now. Just click on the blue button that says 'Take this course', and remember, it's entirely risk free!

What are the requirements?

  • A basic knowledge of WordPress and how to login to your web hosting account.

What am I going to get from this course?

  • At the end of this course students will have gained an understanding of how WordPress websites get compromised and will have the knowledge, understanding, and skills to be able to put in place adequate protection to prevent their sites from being compromised. If their site is already compromised they will gain sufficient knowledge to be able to clean up the site so that it is clean, safe and secure.

Who is the target audience?

  • This course is for anyone who has a WordPress site, or is thinking of building a WordPress website, and wants to keep it safe, secure, and free from malware.

What you get with this course?

Not for you? No problem.
30 day money back guarantee.

Forever yours.
Lifetime access.

Learn on the go.
Desktop, iOS and Android.

Get rewarded.
Certificate of completion.


Section 1: Introduction and Course Outline
How To View This Course At It's Best
What Are You Going To Learn?
Section 2: End-to-End Security
Local Risks
Secure Hosting
Managed Hosting
Action Points
Section 3: WordPress Security Considerations During Installation
Changing The WordPress Defaults
The WordPress Famous 5 Minute Install - Part 1
The WordPress Famous 5 Minute Install - Part 2
Installing WordPress Through Your Control Panel
Action Points
Section 4: Securing Your Hosting Account After Installation
Start Here To Secure Your Existing WordPress Site
How To Change Defaults On An Established Site
Removing Telltale Signs
Permissions Explained
Changing Permissions
Moving The Config File
Prevent Sensitive Data Showing Up In The Search Engines
Action Points
Section 5: Protecting Your Site From Unwelcome Login Attempts
Protecting Your WordPress Login Area
How To Deal With Bruteforce Attacks
Limiting Login Attempts
Securing The Login Page By Adding A Field
Securing The Login Page By Removing The Username & Password Fields
Securing WP-Admin with .htaccess and .htpasswd
Securing WP-Login.php with .htaccess and .htpasswd
Finishing Off The .htaccess and .htpasswd Changes
How To Spot Problems By Analyzing The Wordfence Logs
Action Points
Section 6: Themes & Plugins
Introduction To Themes & Plugins
Where NOT To Get Themes And Plugins
Other Places NOT To Get Themes And Plugins
The Best Places To Get Themes And Plugins
How To Easily Keep Your Themes And Plugins Up To Date
Action Points
Section 7: Backing Up Your WordPress Site
Backup Overview
Backing Up With CPanel
Plugins & Scripts To Backup Your WordPress Site
Getting Some Else To Do Your Backups For You
Action Points
Section 8: How To Deal With A Hacked WordPress Site
So You Think You've Been Hacked?
What Are The Symptoms?
How To Check If Your Site Is Compromised
Are YOU The Weak Link?
Checking Your Hosting Environment For Problems
Starting The Cleanup Process
Finishing Off The Cleanup Process
How To Remove The Malware Using An External Service
How To Remove The Malware Using A Plugin
Identifying How They Got In
Section 9: What To Do Next
6 questions

We've covered quite a bit in this course, over a wide range of areas. Let's do a quick quiz to see how much you remember...

Section 10: Bonus Section
November 2014 - CryptoPHP Warning
Plugins I Use on My Site (Last Updated June 2016)
Bonus Lecture : Get a Big Discount on My Other Courses

Students Who Viewed This Course Also Viewed

  • Loading
  • Loading
  • Loading

Instructor Biography

Chris O'Connor, WordPress Expert, Author, Raspberry Pi Enthusiast

I've been building web sites since the mid/late 90's, and am the author of the book WordPress For All : How To Create A Website For Business Or Personal Use, Quickly & Easily - Whatever Your Skill Level. It is available available on Amazon for the Kindle, with a paperback version due to follow in the near future.

I've been using WordPress since it was first released, and prior to that, B2 (the software WordPress was forked from). I've built numerous websites both for myself and for clients, using HTML, WordPress, and Joomla. From the very first commercial web site I built (in the days before Google existed) I have made a point of building my sites with search engine optimisation in mind, and have had top ranking for many of my sites for some of the toughest keywords out there.

I'm a big fan of Twitter, and if you follow me on Twitter then make sure you let me know that you found me on Udemy and I'll be sure to follow you back.

Ready to start learning?
Take This Course