So you want to start a blog or website?  If you want to add google adsense ads or any other ads for that matter, then you will want to start your own website by purchasing a domain and having it hosted.  If you want a faster website and don’t want to have to worry about the security of the site, then you can have you website managed by the hosting service.  I currently use 1and1.com for hosting which is the number one hosting site for wordpress blogs.  A link to 1and1.com is below:


Even if you decided to have your website managed, you still need to take basic precautions to protect your website.  Once you have your WordPress website up and running, you need to install jetpack, iThemes security, Wordfence, and UpdraftPlus plugins.

Once jetpack is installed turn on two factor authentication. Go to Settings – Security and configure the below settings:

Wordfence is an application level firewall and will scan your site for malware.  It will give a lot of warnings if I update or install a plugin because my site has changed.  iThemes Security offers ways to lock down WordPress in an easy-to-use plugin.  Also, install UpdraftPlus for automatic backups. Make sure there is not an “admin”, “test”, or domain name accounts because hackers will try to brute force the these accounts. The most important thing is to have two factor set up for every admin account. Also, make sure your login username is not posted in your posts.  I am working on a blog post that covers this now. Jetpack, Wordfence, iThemes Security, and UpdraftPlus can be used for free and you get great protection using them. Of course, keep your plugins updatedand only install trusted plugins.  Here is a link to two wordpress malware plugins recently found in the wp plugin store: You searched for wordpress | Cybersecurity | CYS Report.