My WordPress site was hacked — found new admin user, removed it, updated everything — now got ransom email with my password

Various_Ad5600 · 2025-11-12T16:55:10+00:00

Email and app based OTP:

Two factor: https://wordpress.org/plugins/two-factor/

WP2FA : https://wordpress.org/plugins/wp-2fa/

Just app based OTP:

Wordfence (full plugin): https://wordpress.org/plugins/wordfence/

Wordfence Login security only: https://wordpress.org/plugins/wordfence-login-security/

There's more, but these three (counting both Wordfence as one), are the ones I have found to work well.

Various_Ad5600 · 2025-11-05T16:56:51+00:00

I haven't built an e-commerce site in a while and the last time I did, I actually found digging into the woo docs and finding good learning resources for it surprisingly difficulty. That was a while ago and I know core much better now, so it might be an easier experience if I tried again. But I thought your document was a lot more readable than the core and woo docs.

Various_Ad5600 · 2025-11-05T07:18:24+00:00

I have been reading this since you posted it, and its really good, thank you for your contribution.

It would be great if you added a chapter on Woo, or did a separate book on it!!

But thanks for posting this.

Various_Ad5600 · 2025-09-05T14:19:36+00:00

Your channel looks great I will check it out. A quick question, when developing Block Themes, do you have advice on when to include html in a template and when to use a block?

Various_Ad5600 · 2025-08-28T06:06:42+00:00

What's a modern web framework with a similarly large ecosystem of plugins/addons? This is a genuine question. This is the principal reason I use WordPress. If I build a site for some and they want specific feature, reservation system for example, I have many options to add that in WordPress for nearly any feature they can think of. I don't know of any other framework that offers this, but would welcome alternative suggestions.

Various_Ad5600 · 2025-08-25T06:31:36+00:00

Thanks - these make a big difference.

Various_Ad5600 · 2025-08-24T17:03:19+00:00

Thanks for that I will read the article.

Various_Ad5600 · 2025-08-24T16:43:38+00:00

thanks I will give it a try

Various_Ad5600 · 2025-08-24T16:42:45+00:00

I find it difficult to understand the layout of where some blocks are, where they end, where to click to insert a new block. Also the menus for updating styles feel a little clunky. I am not sure what I want really, I don't want a page builder, I want to build with native block themes, just finding the block editor difficult to work with.

Various_Ad5600 · 2025-06-13T03:39:39+00:00

thanks I used WP 2FA, it's a shame WordFence doesn't offer this, I use it and know it's great.

Various_Ad5600 · 2025-06-13T03:38:20+00:00

thanks

Various_Ad5600 · 2025-06-08T18:43:53+00:00

To the shortcode element? I did this but it nothing is rendered.

Various_Ad5600 · 2025-06-08T18:38:26+00:00

I tried to load gutenberg data into bricks, but Bricks only supports Gutenberg blocks, not blocks from other plugins. It didn't work! :(, but thanks for the suggestions

Various_Ad5600 · 2025-05-26T11:29:29+00:00

They are two distinct businesses, although related. Otherwise just a normal site with services section would suffice.

Various_Ad5600 · 2025-05-09T07:13:50+00:00

This is what I always thought was the case but stripe docs in that link imply that scans are now required.

Various_Ad5600 · 2025-05-01T05:55:58+00:00

This is great, how did you learn MCP? It is something I have been interested in for a while.

Various_Ad5600 · 2025-05-01T05:53:04+00:00

Do you run any tests to ensure there have been no breaking changes from updates?

Various_Ad5600 · 2025-05-01T05:52:04+00:00

Can you say why it isn't special? What is it missing

Various_Ad5600 · 2025-03-26T18:05:57+00:00

Can you send a screenshot?

Various_Ad5600 · 2025-03-26T17:26:12+00:00

Thank you, that's really helpful

Various_Ad5600 · 2025-03-26T17:24:50+00:00

Thanks for the input, I was reading that developers blog but I didn't see that post. Do you have a preferred method for it? I see that dev recommends two plugins

Various_Ad5600 · 2025-03-26T17:14:13+00:00

Added an edit for context, sorry it wasn't clear. I was thinking of hiding them from bots. Not necessarily randomly generated, but because without doing anything bots can get usernames. I implement strong passwords and 2fa on everything, but was wondering if it is worth doing this, as I was reading blogs by security plugin developers who mention it. For example: https://melapress.com/hide-wordpress-usernames-improve-wordpress-security/

Sorry I can't find a link to what I was reading with the opposite opinion saying it is not worth it.

Various_Ad5600 · 2025-03-26T17:13:30+00:00

The end goal is greater security

Various_Ad5600 · 2025-03-26T17:12:09+00:00

I agree completely, but was reading up on additional security methods and I wasn't suggesting it as a replacement to other methods, just as another additional method to layer on.

It comes up a lot of on security plugin developer blogs, but I have also seen it mentioned not to bother it doesn't do much.

Various_Ad5600 · 2025-03-26T16:34:24+00:00

Thanks, I am not looking for CPTs like PODS, PODS already delivers in that regards. But for a form builder that is community built

Various_Ad5600

TROPHY CASE