I don’t want to scare you but I want you to be aware of the reasons why you should backup your WordPress site, and even better protect it against someone gaining access to that site.
Anyone getting into the administrative features of your WordPress site can delete anything that is there, replace it with something else, redirect it and in fact access every single file in your WordPress site. This applies sometimes to other websites on the same server. That is why it’s really important to keep people out and backup your site just in case something goes wrong.
Something that is very easy to do if someone gets into your WordPress site is delete it completely! There is even a plugin called Bulk Delete that can delete all plugins within your site. A really a scary thought! But, if you keep your site backed up, then no one can really hurt you, even if you are posting to your site on an infrequent basis.
Let’s say in the worst case you back up your site on a Monday, and someone gets into your site and deletes it on a Friday, at least you have only lost the past five days of work. You haven’t lost the past two years, if not more.
What is even scarier is that someone who gets into your WordPress site might replace it with something else. Many terrorists, religious and activist groups have in fact used hackers to gain entrance to weakly protected WordPress sites and replace it with their own images and content.
What could also happen is someone might set up your site to redirect to a new site, or display some ads. And even worse, if your site gets flagged as an attack site or as a problem site other people will not be able to see it.
If you ever try to load your WordPress site and it seems to be redirecting to some other place on the internet, it might have been hacked and you should investigate immediately.
One of the scariest things about someone getting into your WordPress site is that they will probably be able to get access to all of your files in your site using the using the file manager plugin in WordPress. And even if you don’t have this file plugin installed, they can easily install it from the WordPress dashboard. And depending on how your server is configured, they might be able to see every single website and account on that server. A very scary thought.
If someone gets into your WordPress site, it’s not just about them changing content or redirecting to a new place, they now can see all your files, all your articles, all of your comments, all your videos, all of your information.
The potential for this to happen to you, is a reason for you to lock down WordPress.
First, use a hard to guess user name and password then be very careful about where you log into your site from. Most importantly, and I cannot overstate this, be sure to backup your site. Doing so will ensure that in the event the worst happens you are still protected and you can still get your stuff back.
There are many options for backing up your wordpress site and one that I recommend is called Back Up Creator. It is affordable and easy to install. It has great features including the ability to store your backup in a different location.