An attack can happen in microseconds, and in the blink of an eye, your site is toast, but with Wordfence Premium’s Enhanced Endpoint Protection Technology, the bad guys don’t have a prayer of attacking your site. We highly recommend Wordfence Premium.
In addition to the standard Wordfence features, Wordfence Premium offers:
- Enhanced Real-Time Threat Defense Feed. Protection from the latest threats, delivered as they emerge. Wordfence is constantly adding updates as they discover new threats. Premium sites receive the real-time version of the Threat Defense Feed. Free users receive the community version, which is delayed by 30 days.
- More Protection From Brute Force Attacks. Hackers are locked out after a set number of failed attempts at usernames and passwords. In addition, they are prevented from gaining information about which usernames may exist on your system.
- Country Blocking. Wordfence Premium blocks countries that are clearly engaging in malicious activity.
- Check if Site IP is Generating Spam. Feeling ignored? Your emails might be trapped. Your legitimate customer emails can be caught in spam filters if another site on your shared IP address is generating a lot of spam. We will use this feature to confirm that your site is running on a clean IP address, and that the shared IP you are using to host your website is not listed as a known source of spam email.
- Check if Site is Spamvertised. More than a pain, spam is destructive. When your website URL is being used for spamvertising, it can severely impact your SEO rankings and email deliverability. Worst case: Your site will be deleted altogether from the web. Wordfence Premium checks if your website URL has been flagged for spamvertising, indicating that your site may have been compromised or that you are emailing too aggressively. If spamvertising is found on your site, SuperPage will dig in and destroy the offending pages, which are invisible to most designers, but not us.
- Advanced Manual Blocking. We quickly and efficiently dispatch site security threats by blocking entire malicious networks and any human or robot activity that indicates suspicious intentions based on pattern matching and IP ranges. You can:
- Block ranges of IP addresses (Think of these as networks)
- Block specific web browsers and web browser patterns
- Block referring websites
- Or any combination of the above
- Require cell phone sign-in, i.e., two-factor authentication (optional)
- And much more … Wordfence Premium offers comment spam filtering for your blog, frequent and scheduled scans, password auditing; great support for your site.
Enhanced Login Protection
- Masked Login. The login URL for all WordPress sites is the same, e.g, mydomain.com/wp-login.php. Hackers use this URL as a starting point for a brute force attack. Of course, you’ll need https and a hacker-resistant password, but as an option to the standard login URL, we’ll create any mask for you, for example, mydomain.com/toughbeans. A masked login halts the bad guys in their tracks. Yeah, tough beans, bad guys!
- Two Factor Authentication (2FA). 2FA is considered the best possible internet security, and it is used widely on high security sites. In addition to https, 2FA requires the Admin to enter a randomly generated continually changing six digit code. If you go with 2FA and you’re listed as an admin, you’ll need the Google Authenticator App, available on iPhones and Androids. Although logging in with the extra step of 2FA is somewhat inconvenient, the lockout protection against the bad guys is so worth it. Highly recommend.
.htaccess For Your Business
.htaccess is one of the best ways to lock out hackers, bots, and the rest of the bad guys. We can take .htaccess one step further by making it totally impossible for them to get in. Here’s how: If you have a business account with your ISP (e.g., Comcast, Verizon, AT&T, etc.), chances are you also have a static IP address. We will insert your static IP in the .htaccess file along with code that prevents all other IPs from getting in, or shutting you down. The good news: Anyone or anything attempting a brute force attack will be locked out before they even get to the front door of your site. The not-so-good news: If your IP isn’t listed in the .htaccess file, you’ll be locked out too. In short, this solution isn’t for everyone. But, if you know that you’ll be using specific computers linked to your static IP to update your site, or if you want us to update your site for you exclusively, talk to us about it, and we’ll set up .htaccess for your business.