Start off by checking your plugins against somewhere like https://patchstack.com/ (or even using their automated service). Source: over 2 years ago

Security is actually very simple, realize that 99% of security issues with wordpress are due to plugins. So what you want to do is install good ones and keep them up to date, you can also install something like https://patchstack.com/ to warn you if a plugin you have installed has a vulnerability. Other than this, use a strong password and change the admin user and use a 2FA plugin with google authenticator. You... Source: over 2 years ago

If only people understood this, a free solution like patchstack.com coupled with good plugin hygience, strong passwords and 2FA. And you're 99.98% safe. Source: over 2 years ago

You can connect your sites with Patchstack for free to be notified when some new vulnerability is found in plugin/theme/wordpress version that you use. You can also check the vulnerability database manually here: https://patchstack.com/database/. Source: almost 3 years ago

People have to understand that 98% of wordpress security issues are due to plugin vulnerabilities, if you monitor for plugin vulnerabilities in the plugins you use, maybe using a something free like patchstack.com and then use a free firewall plugin like BBQ firewall or Cloudflare + Using 2-FA with a password manager, changing the login URL to avoid bots all together. Source: about 3 years ago

I recently implemented a software updating system using [The Update Framework](https://theupdateframework.io/) directly, with [go-tuf](https://github.com/theupdateframework/go-tuf). It required a lot of design work around how we were going to do package management on top of using it for a secure updating system. This was due to TUF's designing around the... - Source: Hacker News / 5 months ago

The Update Framework (TUF): TUF is a framework, not a tool, designed to enhance the security of software update systems. It focuses on resilience against key compromises and attacks, employing verifiable records to verify the authenticity of update files. TUF's flexibility and integration ease make it a foundational element in securing software updates, though it's not a direct image signing tool like the others. - Source: dev.to / over 1 year ago

Here’s to hoping they employ some security to prevent the machines from being hacked and attacking our own infra ala TUF (https://theupdateframework.io/) or the tech from Foundries.io. - Source: Hacker News / almost 2 years ago

Release signing—or attestation—was a hot topic at KubeCon among vendors, with many offering their own solutions. One in particular that stood out was CNCF’s recently graduated The Update Framework (TUF). - Source: dev.to / about 2 years ago

One of the other solution for signature and handling their upgrade is https://theupdateframework.io/ . Haven't come around implementing it yet, but it sounds like a robust solution to this problem. Have you looked at it before? Source: over 2 years ago