How To Secure Your WordPress Site

1. Update WordPress to its latest version. If you installed your Wordpress via your Servage account, this can easily be done via the application installer.

2. Update all themes to their latest version.

3. Hide admin URL using plugins like WPS Hide Login

4. Use captcha on contact forms

5. Delete unused plugins, themes

6. Scan all files for malware and virus.

7. Use security plugin like WordFence or Sucuri security plugin.

8. To block IP from accesing your site/WordPress you can use this code in .htaccess:

<Files wp-login.php>

order deny,allow

allow from xxx.xxx.xxx.xxx

deny from all

</Files>

Replace xxx.xxx.xxx.xxx with the IP you wish to block.