Enhanced Security for Desktop Computing
- To enhance your day-to-day desktop computing environment security and reliability
- To minimize security threat from Internet (or other channel), and also against your website at the same time
Some malware, hide in PC, are working like a keystroke recorder, which records your keyboard activity, and capture username, password.
So, in order to minimize the risk against WordPress hacking, below are some suggestions to reduce vulnerability of your desktop PC (based on Microsoft Windows)
You may consider to –
- Use licensed and supported version of Windows (i.e. your copy of Windows can be updated)
- Enable Windows Update (with automatic/scheduled update)
- Install Anti-Virus (with auto update definition)
- Install trusted software only
- Keep your software update, especially your OS, Internet-related softwares (e.g. web browsers, email clients, Adobe Acrobat reader, Adobe Flash player, Java)
- Use 2 Windows user accounts, one for administrative account, one for standard daily usage. (details)
- the administrative account is used for admin purpose (e.g. install/update/uninstall software, change system settings)
- the standard user account is the account you daily use (i.e. web browsing, check/send email, social network, update website, etc)
- privilege separation shall reduce the chance of being unintentionally installed malware in system-wide setting during your daily work (e.g. web page plugins)
- Run anti-virus full system scan on regularly basis (e.g. weekly)
For some antivirus vendor, it is possible to make schedule to full scan automatically
- If you need to work and play games, if possible, use 2 separate devices (e.g. desktop and tablet) to reduce security threat. One for work, one for game.
- Use complex password
- Pay attention to Microsoft Windows Life Cycle (click here for other Microsoft products,e.g. Microsoft Office)
When one product reached its EOL date, it means no further (security) update will be available
- Enabled Windows Firewall (mostly enabled by default)
- For IE, enable SmartScreen Filter (mostly enabled by default)
- For Chrome, Keep enable Google Safe Browsing (mostly enabled by default)
Also, for further, you may consider to –
- Setup some backup and/or remote backup for your important files
(In case of malware or hardware failure, you may recover important files from other source)
- Use RAID (e.g. RAID-1 mirror) to minimize single hard drive failure
(The information above is provided on AS-IS AS-AVAILABLE basis, no any guarantee is made nor implied)
- There are known malware which try to steal FileZilla FTP client saved password.
- If your device is infected with virus/Trojan/malware, it’d recommended not to use it to any login authentication (including WordPress). Please clean the device first before further usage.
RecoverWP.com is managed by web hosting professionals, who have been working on web hosting, WordPress website, security and vulnerabilities area since 2003.