I like the WP Rocket folks, and their posts are normally pretty useful, compared to the filler most dev blogs pump out to get pageviews.
Anyhow, I am making a note here so I can write a better version of this, using my new playlist format.
The 12 things listed in the article are:
- Using security plugins
- Choosing a secure host for your website
- Understanding the importance of updates
- Understanding the importance of updates
- Enabling two factor authentication (2FA)
- Limiting login attempts
- Limiting linkbacks on the website
- Using secure payment gateways
- Not using a free theme
- Adding Secure Socket Layer (SSL)
- Checking the settings of FTP directories
- Making frequent and multiple back-ups
It is generally good advice, but I would organize it differently, and some of these items are very DIY, which is the point of the article, for people running their first store, but I want to speak to it from the angle of a professional hosting provider, and go into more detail for each area. If someone is going to DIY, they should have all the knowledge required to keep their customers secure and private.
Tracking at: