Yu-Gi-Oh! GX Tag Force - Card Passwords and Booster Packs (PSP)
Passwords, Attakcks, and Security, oh my!
-
Upload
michele-butcher -
Category
Internet
-
view
2.095 -
download
3
Transcript of Passwords, Attakcks, and Security, oh my!
![Page 1: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/1.jpg)
Michele Butcher
valet.io GiveWP.com yoast.com
Passwords, Attacks, and Security oh my!
@michele_butcher
![Page 2: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/2.jpg)
Michele Butcher
• Accounts Lead at Valet.io
• Support Engineer for Yoast
• Support Guru for GiveWP
• Beginners and Intermediate WordPress Instructor
@michele_butcher
![Page 3: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/3.jpg)
Why is security important?
@michele_butcher
![Page 4: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/4.jpg)
Many do not think security is important until it is too late.
Every single day hackers find new ways to get your information.
Todays features are tomorrow’s vulnerabilities.
Stop them before they stop you
@michele_butcher
![Page 5: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/5.jpg)
Why do hackers hack?
• Make bank
• build a zombie army
• Share their nasty code with the world
• Get your information
• They are bored
• They want to see if they can do it
@michele_butcher
![Page 6: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/6.jpg)
But…Why are they hacking me?
There is rarely ever a targeted hacking attack.
Typically all sites are considered targets. The big and the small.
@michele_butcher
![Page 7: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/7.jpg)
And how do they get in?
• They guess your login information
• Denial of Service Attack (DDoS)
• Through a file in a theme, plugin, or anything on your server where they found an exploit
• Through your FTP and/or cPanel configuration
@michele_butcher
![Page 8: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/8.jpg)
Here is the only scary thing I will say in this talk
@michele_butcher
![Page 9: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/9.jpg)
You are NEVER 100% secure
@michele_butcher
![Page 10: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/10.jpg)
A test site or a site that might get 5 visitors a day can be hacked.
It happened to me and it can happen to you.
@michele_butcher
![Page 11: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/11.jpg)
Don’t Let Security Make
you like this guy!
@michele_butcher
![Page 12: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/12.jpg)
There are some simple steps to keep the hackers out
@michele_butcher
![Page 13: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/13.jpg)
WordPress Security Basics 101
@michele_butcher
![Page 14: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/14.jpg)
Never ever never use “admin” as a username or “password” as
password. NEVER!!!!
Any questions?
Adm1n and Pa55w0rd do not count either!
@michele_butcher
![Page 15: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/15.jpg)
Always use SFTP
“S” is for safe!!!
@michele_butcher
![Page 16: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/16.jpg)
Only give users the access they need
Just because they want to be an admin does not mean they should.
Guest bloggers should rarely every be anything more than a contributor.
@michele_butcher
![Page 17: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/17.jpg)
If it is a temporary login, delete the user when the job is done
If they do have posts, you can convert them to different users or make them a subscriber with limited access.
@michele_butcher
![Page 18: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/18.jpg)
Set up file detection
Many security plugins like iThemes Security and WordFence will alert you when files have been changed
@michele_butcher
![Page 19: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/19.jpg)
Only keep the theme you are using and one backup theme on your
site.
The more themes that are on a site, the more open chances you have to a vulnerability
@michele_butcher
![Page 20: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/20.jpg)
Only keep the plugins you have active on your site.
An uninstalled plugin is not a potential vulnerability.
Use the plugins repo favorites option to keep a list of your favorite plugins
@michele_butcher
![Page 21: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/21.jpg)
Security Plugins
• iThemes Security (Free and Pro version
• Sucuri Firewall
• WordFence Security
• Jetpack with Brute Protect and Vault Press
@michele_butcher
![Page 22: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/22.jpg)
Always make backups!
• Backup Buddy, UpDraftPlus, BackWPUp
• Always save to someplace OTHER than your server
• Save them to Dropbox, AWS, email, or your local machine
• Have them scheduled to be made daily or at least weekly
@michele_butcher
![Page 23: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/23.jpg)
Malware Scanning? Do I need it?
• Google Webmaster Tools
• Sucuri Scanner
• VirusTotal
If you feel your site could be infected, first do a malware scan
@michele_butcher
![Page 24: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/24.jpg)
What else can I do to protect my site?
@michele_butcher
![Page 25: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/25.jpg)
Update! Update! Update!
Update core. Update themes update plugins!
The biggest reasons of updates is typically security or feature related.
The biggest source of nearly all hacks is due to lack of updating.
@michele_butcher
![Page 26: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/26.jpg)
If you use Envato products (ThemeForest and CodeCanyon) always check the box in the downloads to be notified of updates.
That is the only way you will know if any of their products need to be updated.
This is why the RevSlider infection was so widespread. Many did not even know the plugin was built into their
theme.
@michele_butcher
![Page 27: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/27.jpg)
Don't ever let your site get too lonely.
That is when the zombies come.
Nobody wants the zombies to come
@michele_butcher
![Page 28: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/28.jpg)
If the unthinkable happens and you do get hacked, it is not the end of
the world.It can and will be fixed.
@michele_butcher
![Page 29: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/29.jpg)
Who can clean my hacked website?
• Sucuri
• Hack Repair
• Wp Security Lock
@michele_butcher
![Page 30: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/30.jpg)
Great! Are there any other ways I can be secure?
@michele_butcher
![Page 31: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/31.jpg)
Always use complex passwords
@michele_butcher
![Page 32: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/32.jpg)
Never email passwords
@michele_butcher
![Page 33: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/33.jpg)
Never use the same password twice
@michele_butcher
![Page 34: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/34.jpg)
Use a Password Keeper
• Last Pass
• One Password
• KeePass
@michele_butcher
![Page 35: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/35.jpg)
If a login has a Two-Factor Authentication, USE IT!
@michele_butcher
![Page 36: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/36.jpg)
Anti-virus!
Use it on all the things.
Yes, even a Mac!
http://mlb.pw/secure @michele_butcher
![Page 37: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/37.jpg)
Be conscious when using public WiFi
@michele_butcher
![Page 38: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/38.jpg)
Use a VPN if you use Public WiFi
• Torguard
• Cloak (Mac only)
• Site Social
• Hide My Ass
@michele_butcher
![Page 39: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/39.jpg)
Update! Update! Update!
@michele_butcher
![Page 40: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/40.jpg)
Back everything up and back it up often!
No one wants to lose their information stored on their computer.
• Bitcasa • Caronbinte • External Harddrives
@michele_butcher
![Page 41: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/41.jpg)
Questions?
@michele_butcher
![Page 42: Passwords, Attakcks, and Security, oh my!](https://reader033.fdocuments.us/reader033/viewer/2022042723/5875e0e61a28ab7d5a8b512b/html5/thumbnails/42.jpg)
Thank you!!!
Michele Butcher
@michele_butcher
Slides can be found at