Words cannot express how grateful I am for this plugin. My hosting account was hacked a couple of weeks ago, which impacted multiple domains, and has been incredibly frustrating and demoralizing. Suddenly I was plunged into technical issues and language that were way over my head, trying to make sense of "if you've been hacked" pages, waiting days on help forums for unhelpful responses, and checking my sites anxiously for new issues before they got out of hand. Finally, I found a mention of WordFence, which should be listed at the top of every single "what to do if hacked" page!
WordFence was made for exactly my situation. There are firewall, scan, and login monitoring features that have been precisely what I needed. Most notable for those who have been hacked are its automatic comparisons of WordPress, theme and plugin files to the latest versions in the WordPress repository, user account controls and notifications, and the ability to set up automatic blocks on high speed login or other access attempts.
You can also see what visitors are doing on your site - and block them - in real time. This is fascinating in itself, even if you don't have security issues, and might be a way to get a security-indifferent client to install WordFence just for that feature.
The "Falcon" caching is another feature that might persuade clients who think they don't need security (the fools!) to install this plugin. It speeded up my site significantly, and was by far the simplest and most intelligent WordPress caching I have ever used.
Note that you can't use both the caching and the Live Traffic monitoring (except login monitoring) at the same time. The caching is easy enough to temporarily disable, though this plugin would be even better if you could do that right from the Live Traffic page.
I also found the dashboard widget to be rather too strong a presence, with a very large font compared to other dashboard text.
However, those are extremely minor criticisms. This plugin is loaded with features, and if that scares you, you are greeted with a tour at installation, and the documentation for every setting is beginner-friendly, and right in front of you when you need it.
Don't wait until *you* get hacked like I did. WordFence is like having a your own personal expert WordPress security advisor watching your site - for free! Now why wouldn't you take advantage of that?
awesome plugin. would recommend for every single installation of wordpress!
The Russians attacked my new website starting late last night and I discovered it this morning. My website email inbox was full of alerts where someone from every city (it seems) in Russia tried to log into my WordPress admin account.
Wordfence stopped over 285 attempts at last count by 7:30 this morning. They tried the user name admin, followed by administrator, and then my website address over and over trying to get in through the password reset feature. Wordfence blocked the IP, and when I found out what was going on, blocked the IPs permanently. BTW: I am not even using the premium version. Think I will sign up for premium today.
Amazing plugin! Must have!
This is very very informative.
I had no idea how many times people have been trying to hack my site.
This even gives you the login details they tried to hack with, so that is very helpful. Hint: NEVER use the login "admin"!
Hey, it is a good product
I fill me safe
You must log in to submit a review. You can also log in or register using the form near the top of this page.