Malware Scanning

Our proactive scanning checks core files, themes and plugins for malware, bad URLs, backdoors, SEO spam, malicious redirects and code injections. It also compares your files with what is in the WordPress.org repository, checking their integrity and reporting any changes to you.

Powered by Wordfence one of the world's leading security software packages, our scanner checks core files, themes and plugins for malware, bad URLs, backdoors, malicious redirects and code injections. We then compare your site files with what is in the WordPress.org repository, checking their integrity and reporting any changes to our security & support team. 

Software Updates

The WordPress engine is an amazing machine, and like all powerful machines, they need to be maintained to operate at their highest capacity.  Additionally, outdated software is the number one way hackers gain access to your website.  Our software update service ensures your core WordPress files, theme and plugins are all running the latest version.  This means security and performance patches are installed in a timely manner.  The average website can have as many as 20 software updates required each month so letting that go for just a few months can mean your site is very outdated and vulnerable to a hacking event.

The timeframe shows how often the software of your site will be updated.  

Health Reports

Based on the plan you select, you'll receive reports covering: Updates Performed, Website Uptime Statistics, Site Visitor Activity & Analytics, Site Security, and an Overview of SEO Placement.

The timeframe shown indicates how often a report will be sent.

Offsite Backups & Retention

A dedicated backup plan is a critical element in your overall website health and security.  By using offsite backups, hosted by Amazon's rock-solid S3 Services, we can ensure that when you need a copy of your site, you'll have it.  Whether it's to mitigate a security compromise, deal with legal discovery or to replace accidentally deleted site content, our offsite backups will get you the data you need.

The first entry (Hourly, Daily, Weekly, Monthly) indicates how often the site is backed up.
The second indicates how long the backup copies are retained (2 Years, 1Year, 6 Months, 3 Months.

Malware Recovery

In the unfortunate event that your site is compromised, cleaning and restoring it can take several hours of work, costing at least $360.  As part of the Ultimate Defense plans, we include varying discounts and expedited turn-arounds on that service.  Our higher end plans even cover the entire cost with priority service.

WordPress has launched new version (4.2.2) as a critical security release after hackers have compromised older versions, which could impact your site. To ensure your site remains free of any malicious attacks, we are suggesting an update to the latest version of WordPress along with an update to any installed plugins.philadelphia-council-wordpress-website-hacked

Ironically, while we were creating this notice it was reported yesterday that the Philadelphia City Council WordPress site was hacked. Their site was running an older version of WordPress. Read more about it on Philly.com: Philadelphia City Council WordPress Site Hacked

The estimated amount of time for the update is 2-5 hours, depending upon the complexity of your site and when the last update has been performed.  Most updates will require about 3 hours. As a courtesy, we are offering a 10% discount off of our normal rates for this work.

Please let us know if we should proceed with this update:

[ezcol_1half]update-my-wordpress-website  [/ezcol_1half] [ezcol_1half_end] do-not-update-my-wordpress-website [/ezcol_1half_end]Due to the serious nature, we will be emailing all existing clients until we have a definitive answer either way. So please let us know!

Some common questions about this update and WordPress websites in general:

Is WordPress a safe platform for my website?

Yes. WP is very secure, however, as with any software platform, it must be maintained properly to stay ahead of hackers. Over 80% of WP sites that are compromised are running old versions. After that, most security flaws are caused by weak passwords or plugins from disreputable sources. Manna only uses plugins from reputable developers and encourages strong passwords.

Is this website update something I can do myself?

Yes, advanced users can attempt to do this themselves. However, if done incorrectly it is possible to take your site offline. Generally speaking, we do not recommend site owners performing this level of code updates.

After this, what can be done to keep my WordPress website safe?

The team at Manna takes your website’s security very seriously. To that end, we’re getting ready to launch a comprehensive selection of WordPress security packages with protection levels to meet any budget. While all our sites have basic security in place, these packages will provide multiple levels of increased security for your site. Look for the announcement email soon!

Why is WordPress the target of hacking?

WP is the most popular CMS (Content Management System) in the world with over 75 million sites using it – that’s almost a quarter of all websites. If you are a ‘bad guy’ you’re going to go after the biggest target. This is the same reason Windows computers are targeted more than Macs and Macs more than UNIX systems.

Is my password a good one?

Using secure passwords are critical to keeping your website safe from hacking. Click here to use Microsoft’s password checker to see if your website passwords are secure: https://www.microsoft.com/en-gb/security/pc-security/password-checker.aspx

You're in Good Company with WordPress

You’re in Good Company with WordPress