When our new clients sign up for an annual contract we begin with a complete backup of your website, we then conduct a thorough security audit where we close and lock down some areas of WordPress that the general public doesn’t need access to. We also review account usernames and passwords to make sure you’re not using any predictable login credentials.
Once that’s done we lock things down even more and restrict access to unauthorised users (bots) that try to access your site by automatically locking out invalid username attempts.
Then we scan you entire WordPress site for known malware and exploits. We also compare the actual code used in your WordPress Install, Themes and Plug-ins against their original files submitted with wordpress.org. Any discrepancy could indicate that you’ve been hacked or have an exploit in place to access your systems at a later date.
Once your website is clear and up-to-date we perform another complete backup of your website. For additional security, we can also store your backup in a different location. This way even if your server crashes (this isn’t common, but it does happen) you still have everything you need to restore your website and get back on-line.
In the event you have been hacked, we’ll contact you and let you know what needs to be done and if there will be any additional costs involved. Please also note that if your website is using illegal or cracked themes / plugins we will not be able to support or maintain your website.