How do I Protect my WordPress Website from Brute Force Attacks?

Brute Force Attack Protection
Categories: WordPress
1 Comment

Here is a list of 10 things to do to protect your WordPress website against brute force attacks:

  1. If your username is admin, change it immediately.
  2. Update your password and make it difficult.
  3. Download the plugin WP-reCAPTCHA.
  4. Sign into your Google account and go to
  5. Add your website from this page
  6. Go back to your WordPress website and add the public & private keys within the WP-reCAPTCHA plugin settings.
  7. Download the plugin Login reCAPTCHA. This will place a reCAPTCHA form in your login area, effectively stopping brute force attacks.
  8. The final step is to install the plugin Better WP Security.
  9. Within Better WP Security, go to the Hide tab and change the Login URL to something other than
  10. Within Better WP Security settings, go to the Login tab and enable the Limit Login Attempts in order to lock out users who attempt to access the website admin area more than your specified number of times.

1 Comment. Leave new

Leave a Reply

Your email address will not be published. Required fields are marked *

Fill out this field
Fill out this field
Please enter a valid email address.

EPR Creations Favicon
Embed Hidden Vimeo Video using Secure HTML5 Video Player for WordPress
How to Create a Front-End Blog using WordPress