Hacker Protection

We use a collection of the latest techniques and software to help keep your site safe from the constant threat of hacking.  This service includes an endpoint firewall built specifically for WordPress sites.  Some plans also utilize real time firewall rules and global lists of malicious IP addresses to enhance the security.  This combination makes for the most comprehensive total security option available.  Hacker Protection includes Endpoint Firewall (EPF) monitors and filters visits to and activity on your website.  Our EPF scans visitor IP addresses against lists of known hackers and watches for suspicious activity.

Malware Scanning

Our proactive scanning checks core files, themes and plugins for malware, bad URLs, backdoors, SEO spam, malicious redirects and code injections. It also compares your files with what is in the WordPress.org repository, checking their integrity and reporting any changes to you.

Powered by Wordfence one of the world's leading security software packages, our scanner checks core files, themes and plugins for malware, bad URLs, backdoors, malicious redirects and code injections. We then compare your site files with what is in the WordPress.org repository, checking their integrity and reporting any changes to our security & support team. 

Software Updates

The WordPress engine is an amazing machine, and like all powerful machines, they need to be maintained to operate at their highest capacity.  Additionally, outdated software is the number one way hackers gain access to your website.  Our software update service ensures your core WordPress files, theme and plugins are all running the latest version.  This means security and performance patches are installed in a timely manner.  The average website can have as many as 20 software updates required each month so letting that go for just a few months can mean your site is very outdated and vulnerable to a hacking event.

The timeframe shows how often the software of your site will be updated.  

Health Reports

Based on the plan you select, you'll receive reports covering: Updates Performed, Website Uptime Statistics, Site Visitor Activity & Analytics, Site Security, and an Overview of SEO Placement.

The timeframe shown indicates how often a report will be sent.

Offsite Backups & Retention

A dedicated backup plan is a critical element in your overall website health and security.  By using offsite backups, hosted by Amazon's rock-solid S3 Services, we can ensure that when you need a copy of your site, you'll have it.  Whether it's to mitigate a security compromise, deal with legal discovery or to replace accidentally deleted site content, our offsite backups will get you the data you need.

The first entry (Hourly, Daily, Weekly, Monthly) indicates how often the site is backed up.
The second indicates how long the backup copies are retained (2 Years, 1Year, 6 Months, 3 Months.

Malware Recovery

In the unfortunate event that your site is compromised, cleaning and restoring it can take several hours of work, costing at least $360.  As part of the Ultimate Defense plans, we include varying discounts and expedited turn-arounds on that service.  Our higher end plans even cover the entire cost with priority service.

Ultimate Defense™ WordPress Security

Exclusively Offering: WEBSITE PEACE OF MIND™

Website Peace of Mind comes from knowing your site is protected and secure.

WordPress Security is serious business.  Ultimate Defense™ is our dedicated answer to keeping your site and company information safe.  We know that one-size rarely fits all, so we offer several plans designed to protect small businesses as well as corporate sites.

%

Of All Website Hacks Can Be Avoided With Proper Maintenance.

The Most Comprehensive WordPress Security Plans available

all Security, no fluff!

We use a collection of the latest techniques and software to help keep your site safe from the constant threat of hacking.  Our services include endpoint firewall and malware scanning software built specifically for WordPress sites.  We also utilize realtime firewall rules and global lists of malicious IP addresses to enhance the security.  This combination makes for the most comprehensive total security option available.
Powered by Wordfence one of the world’s leading security software packages, our scanner checks core files, themes and plugins for malware, bad URLs, backdoors, malicious redirects and code injections. We then compare your site files with what is in the WordPress.org repository, checking their integrity and reporting any changes to our security & support team. At the same time, we also check your site for known security vulnerabilities and abandoned plugins. 
The WordPress engine is an amazing machine, and like all powerful machines, they need to be maintained to operate at their highest capacity.  Additionally, outdated software is the number one way hackers gain access to your website.  Our software update service ensures your core WordPress files, theme and plugins are all running the latest version.  This means security and performance patches are installed in a timely manner.  The average website can have as many as 20 software updates required each month so letting that go for just a few months can mean your site is very outdated and vulnerable to a hacking event.

The timeframe shows how often the software of your site will be updated.

Based on the plan you select, you’ll receive reports covering: Updates Performed, Website Uptime Statistics, Site Visitor Activity & Analytics, Site Security, and an Overview of SEO Placement.

The timeframe shown indicates how often a report will be sent.

A dedicated backup plan is a critical element in your overall website health and security.  By using offsite backups, hosted by Amazon’s rock-solid S3 Services, we can ensure that when you need a copy of your site, you’ll have it.  Whether it’s to mitigate a security compromise, deal with legal discovery or to replace accidentally deleted site content, our offsite backups will get you the data you need.

The first entry (Hourly, Daily, Weekly, Monthly) indicates how often the site is backed up.
The second indicates how long the backup copies are retained (2 Years, 1Year, 6 Months, 3 Months.

In the unfortunate event that your site is compromised, cleaning and restoring it can take several hours of work, costing at least $360.  As part of the Ultimate Defense plans, we include varying discounts and expedited turn-arounds on that service.  Our higher end plans even cover the entire cost with priority service.

Due to the combination of proprietary information and sensitive security elements which make up our plans, we will gladly share the details upon request.

Ultimate Defense Technical Specs Request Form

4 + 5 =

Common Questions

Am I locked into a long-term contract?

Nope! This is a cancel any time service.  

What can happen if I don’t secure my WordPress Website?

One of four things are likely to happen if you don’t keep your WordPress website secure and up to date.

1. Nothing.
You may get lucky for years or just months.


2. Your site doesn’t run it’s best.
Outdated software may still function fine but will often be ‘quirky’ or slow.  Slow sites are actively getting penalized by Google in the search results.


3. Something breaks.
Outdated plugins can stop working entirely.  Ex: Chrome updates it’s browser software and no longer works well with a plugin that is old.  The updated plugin is designed to work with the newer browser.  As an example, this can cause your contact form to stop functioning without you realizing it.


4. Your site gets hacked.
Your site visitors can be subjected to a virus.
Your site could be completely dropped offline.
You can have ads showing on your site for certain rather “embarrassing” products.
Messages for political movements and causes can replace your website content.

I just launched my site.  Do I need to worry about updating it?

Yes.  When most *professional* web development companies launch a website or do major revisions, everything is up to date and current.  Unfortunately, updates are released constantly.  For example: Between January and September 2020, WordPress had 2 major updates and 8 minor ones.
 
Think of it like car maintenance; even a new car needs the oil changed in the first year.
 
So the short answer is that updates do need to be done regularly.  However, since your site was just redone and everything was updated then, you’re not as much at risk as someone who hadn’t updated for many months. 

Why do I need to update my plugins?

All software needs updates – laptops, phones, even the software that runs newer TVs.  WordPress plugins are no different.  Updates are released to keep the plugins safe from hackers, fix bugs and overall keep the software (and site) running efficiently.  Many updates are released to keep up with computer updates and browser releases.  Not updating will put your website at risk.

Why do I need to update my plugins?

All software needs updates – laptops, phones, even the software that runs newer TVs.  WordPress plugins are no different.  Updates are released to keep the plugins safe from hackers, fix bugs and overall keep the software (and site) running efficiently.  Many updates are released to keep up with computer updates and browser releases.  Not updating will put your website at risk.

You’re hosting my website, doesn’t that include backups?

We have the same backup policies as the other major hosting companies such as GoDaddy and HostGator:

GoDaddy “You shall be solely responsible for undertaking measures to: … (2) maintain independent archival and backup copies of your website or server content;…”
HostGator “Backups are provided as a courtesy and are not guaranteed. Customers are responsible for their own backups and web content and should make their own backups for extra protection.”

While we do keep some copies of your site, these are incidental backups and they are not kept for any set period of time. We cannot guarantee the availability or integrity of any backup for a particular time frame. If a restoration is needed and we have a backup available to use, we’ll use it, but no guarantees can be given. Our dedicated back up programs offer guaranteed backups, kept on a secure, off-site server, for a set period of time.

My old ‘web guy’ never mentioned this.

We get this question quite a bit. Many web developers focus on the big projects of building a new website and ignore the ongoing maintenance. Just like car dealers would rather focus on selling cars than discussing oil changes. Nobody likes to talk about the ‘total cost of ownership’.

Often times, the first a business hears about maintaining their website is after it has already been hacked or breaks.

How is a WordPress website compromised?

The most common reasons are:

  • Outdated web application. Keep your application updated to the latest available version to make sure that all core security vulnerabilities for it are patched;
  • Outdated web application extensions;
  • Plugins/modules/components downloaded from unofficial sources;
  • Weak user/administrator passwords;
  • Weak My Account/FTP accounts passwords;
  • Infected local computer. Always make sure to have updated antivirus software and scan your computer for viruses regularly.

Why shouldn’t I just do it myself?

This question comes down to time and expertise.

Time: Do you have the time to run your business and learn how to manage malware scans, firewalls, software updates, incremental backups and hundreds of other elements?


Expertise: We’ve been building and maintaining websites for over 20 years.  We know what we’re doing and we know how to keep you safe – no guessing or learning curve.

Can I secure my own website?

One of the things that makes WordPress so amazing is the average site owner has complete control and coding access.  You are always welcome to fully maintain your own site, including updating plugin, core WordPress and theme software.  Many of our clients with internal IT teams or advanced computer users opt to maintain their own site.  

If WordPress is secure, why do I need a security package?

Out of the box, WordPress, like all other software has a default set of included security features.  However, those basic security features are just the beginning of the enhanced security features available.  What level of security your site needs depends on many factors, including the purpose of the site, the volume of traffic and your budget.

Why should I update WordPress?

Just like plugins, the reasons to update your WordPress core are threefold. Security, bug fixes and new features.  The most important reason to update software in general is for security. Hackers are constantly looking for exploits and vulnerabilities in WordPress. When security updates are released it’s a good idea to update as soon as possible.

If I don’t secure and keep my site updated, will my WordPress site get hacked?

Probably, eventually.  We’ve seen sites go for years without updates and suffer no serious issues.  However, we’ve also seen sites get hacked two weeks after a critical security update is released.  One popular plugin identified a security flaw at the end of August, 2020.  Within 1 week, over 10,000 attacks per hour were identified trying to exploit that flaw.

If my site gets compromised, how much will it cost to recover it?

The final costs of restoring a compromised or hacked site depends on several factors including the size and complexity of the site. Most sites (non-ecommerce or complex) can be fully recovered in three hours of time or $360. Site restoration involves much more than just cutting and pasting files. The site must be checked after the restoration process and the more complex, the more time required to do so properly. Sites with complex functions, like ecommerce sites, require more time. Likewise, large sites with hundreds of pages also take more time to recover.

Can I back up my own site?

Total Site Care and Market3 never stop our clients from maintaining their own sites. You are always welcome to fully maintain your own site, including performing backups. If you have any problems with your site we’ll do everything we can to restore your site using your backup files.

Why should I worry about recovery if I have the Ultimate Defense Security Plan?

Unfortunately, site compromises and malware infections can happen despite all preventative measures.  Just like a security system and armed guards doesn’t guarantee against theft.  This is true for any site, at any time; even for federal government sites and major corporations. Your best and last line of defense against tragedy is putting solid security measure in place including: maintaining regular backups and having a solid recovery plan.