Industry News by Bret Piatt Aug 15, 2017 How to Secure Wordpress - Week 46 of Cyber Talk Radio How to Secure Wordpress - Week 46 of Cyber Talk Radio Show Summary This past Saturday, August 12, episode 46 of Cyber Talk Radio hit the air on 1200 WOAI and iHeartRadio streaming. I was joined by Justin Dailey, security engineering manager at WP Engine. In the first half of the show, we kick off by having Justin give us background on WP Engine. In case you are not familiar, WP Engine is a managed Wordpress hosting company. Justin’s day job is to keep WordPress safe for customers. Do you know what Wordpress is? At a high level, it’s a popular open source content management system. Wordpress has adopted a very pluggable architecture which makes it popular to implements themes, e-commerce functionality, and other user-friendly features for people that aren’t tech savvy. With an open source technology, you get a lot of eyes on the code which makes it vulnerable to human error. A quick tip from Justin is to stick with mainstream Wordpress themes to make sure you are staying with a qualified code base that’s secure. Learn what steps do you need to follow to make sure that your Wordpress site is secure. In the second half of the show, we take a deep dive into how to run a complex Wordpress website. I have Justin walk us through a real life example of how he would secure my Wordpress site if he had root access to my server. Justin encourages you to think about the full stack and how you might be exposed. Hackers use Nmap to scan for open, vulnerable ports to access. Justin gives tips on best practices to follow when configuring your server and Wordpress environment. Securing Wordpress can be as simple as you want or as complex. Justin recommends starting with the OWASP Top 10 for security guidance and what to look out for. It’s important to raise the security bar for the hackers that are doing drive by hits on your site. There are over a billion WordPress sites and about 28 percent of the Internet is based on Wordpress. Listen to the full episode to make sure you are doing what you can to keep your Wordpress site safe from hackers! Full episode replay available here! Upcoming episode – Saturday nights from 11:00 p.m. to Midnight - Episode 47, August 19: David’s Law - The Fight Against Cyberbullying Episode 48, August 26: Secure Data Exchange Platforms with Globalscape Episode 49, September 2: Cybersecurity Center at St. Philip’s College Listen to a replay of this episode or past episodes on a Cyber Talk Radio Podcast stream. Replays are available via the below podcast services: Pocket Casts iTunes Recent episodes – available to stream from our YouTube channel - Cybersecurity Legislation with Congressman Will Hurd Creating a “Culture of Security” with Dr. Greg White of University of Texas San Antonio Codeup’s Approach to Developing Responsible Programmers with Ryan Orsinger Career Matching for Military Cyber Jobs with Cyber Warrior Network Ethics of Artificial Intelligence and Paying Ransoms to Hackers with Van Lindberg 24th Air Force Cyber Operations with Sherri Hanson Bunker Labs and Empowering Military Veterans as Leaders in Innovation with Johnathan Paul Wojtewicz STEM Education and the Geek Bus in San Antonio with Jake Lopez at SASTEMIC Cybersecurity Program at Texas A&M University San Antonio Cybersecurity Master’s Program at St. Mary’s University Cyber Risk Management with Innove Cyber Security Awareness and Training with Inspired eLearning Have an idea for a topic or want to be a guest? Contact Cyber Talk Radio via our request a topic or be a guest form.