WordPress is a platform that many people use for their website (you probably use it) and many people don’t realize that they must keep their plugins and themes updated. People (also known as black hats) discover latest ways to break past the plugin / theme and destroy the site or hold it for ransom (you have to pay money to get back into the site), and nobody wants to spend time / money recovering so follow these steps to update your website and hope (since nothing is 100%) that your website doesn’t get broken into.
1) Update twice a month
Go into your dashboard which is located at example.com/wp-admin (replace example.com with your website) and update the plugins and themes that say they need updating.
2) Wait 48 hours before updating new plugins
We advise that you wait at least 48 hours before updating any plugin to ensure it works as it should. I know that everyone just wants to get it over with and update but you don’t want to have an updated plugin that doesn’t work and screws up your entire website.
3) Remove plugins that haven’t been updated in over 1 year
If a plugin hasn’t been updated in over 1 year then it probably means that the person who developed the plugin doesn’t care about the plugin. It also means that black hats now can consider the plugin code and try to figure out a way to get into your website and destroy your site. You can see if a plugin you have hasn’t been updated by going to your plugins section of your dashboard (example.com/wp-admin/)
4) Remove plugins that you aren’t using
If you have plugins that are deactivated then they are just taking up space on your website, and taking up resources. Get rid of them to ensure you have a clean and reliable website.
5) Install Wordfence for security and alerts
Wordfence is a plugin for WordPress that protects your site as well as providing alerts so you stay informed. We suggest you install the free version, and configure it to fit your needs.