WEB MAINTENANCE

wordpress updates | monthly care reports

It doesn’t matter if your business is big or small – vulnerable websites are seen as an opportunity. And once a vulnerability is found, a hacker can exploit it. With each new release of WordPress themes and plugins, developers fix bugs, add features and patch security vulnerabilities. Maintain the website yourself, or choose from monthly maintenance plans or the “auto update” option – but whatever you do – please keep your website up to date. It’s easier to prevent security issues than to fix a website after it’s been hacked.

Site Cleaning Service Fees: Been Hacked? Malware removal fees from Sitelock and WordFence range from $250.00 - $650.00

monthly care reports - $25 / month

YOUR WEBSITE, BIG OR SMALL, NEEDS TO BE UPDATED.

MAINTENANCE PLAN

AUTO UPDATES

Weekly Automatic Backups (local - on your server)

Monthly Remote Backups (on the cloud - before any updates are made)

Rollback (quickly revert back in case anything goes wrong after an update)

Auto Updates (WordPress plugins / core)

Auto Updates (theme) *option not available

Manual Updates (plugins / themes / core - checked to confirm no issues/conflicts with the website)

PHP Updates (Newer versions are more secure, have fewer bugs, and run your scripts more quickly)

Tidy (remove / replace abandoned plugins, delete spam comments)

Security (Wordfence automatic scans)

Security (Wordfence / Succuri Scans / update banned IP list, failed logins)

Same-day Emergency Critical WordPress Updates

Check Website Blacklist Status

24/7 Monitoring (website uptime/downtime)

Performance Review (Google Pagespeed Insights)

PageSpeed Score (desktop / mobile)

Website traffic (30 day analytics snapshot)

Website Administrator (we handle all the security notifications)

Monthly Report (details on all the work completed)

Technical Oversight (make sure everything is running smoothly)

WordPress offers “automatic updates” which allows you to keep all your plugins and themes updated. There are good arguments both ways for how effective it is. If you will not be checking on your site at least once a month, then I would suggest setting this to “on”, as auto-updates can ensure your site remains up to date, which improves security. Overall, the risk of being hacked outweighs the risk of an automatic update gone awry. NOTE: WordPress themes cannot be set to update automatically.

How Do I Know If I've Been Hacked? Some hackers want to let you know that you've been hacked, so you may see your website replaced with a 'you've been hacked' page or something similar. Or your website will redirect to another website. Unfortunately, many hackers will not give you any indication that you have hacked, and you won't find out until your website becomes blacklisted.

What Does It Mean To Get 'Blacklisted'? Various services (like search engines and online directories) will scan to see if a website is infected with malware. If they discover malware, they will 'blacklist' the site to protect users from visiting it. The longer a site remains on a 'blacklist', the more its search engine ranking is damaged, and it may be removed from search results and directories entirely. From a marketing perspective, getting blacklisted is one of the worst things that can happen to your website.

TECHNICAL DETAILS

support, security & maintenance

1. WEBSITE SECURITY

Website hardened (free of charge) as a proactive measure. Brute Force Protection includes strong password enforcement, lockouts and limits invalid logins. Web Application Firewall actively blocking requests matching known attack patterns and is actively protecting your site from attackers, and IP blocking. If a bot is scanning your site for vulnerabilities, it will generate a lot of 404 errors. 404 Detection will lock out that IP after the limit set. Additional scanning for malware and website blacklist status via Sucuri Sitecheck. In addition to automatic scans, I manually scan for malware/hacks, and if identified, we can discuss the best way to go about removing it.

2. BACKUPS

Rest assured knowing there are regular backups of your website’s content and 1-click restore.

Automatic weekly backups are made locally (on your server). All maintenance plans include regular automatic local backups and 1 monthly off-site (Backblaze cloud storage) backup. Off-site backups are important in case your website host goes down and you don’t have access to the local backup. All backups include your entire WordPress file system (core, themes, plugins, photos) as well as the database. And if something goes wrong and you ever need to restore from the most recent backup, that’s included in the plan free of charge.

3. SECURITY MONITORING

Keep your site safe and secure and prevent malware attacks. Daily automatic Wordfence malware & hack scans help find malicious code on your site as soon as it happens. I also continually monitor your failed logins and manually update the blocked IP list to reduce the likelihood of unwanted logins. I will receive any email security notifications – if there is a problem on your website it triggers an email alert that is sent directly to me to manage. I actively monitor new plugin vulnerabilities via iThemes Security vulnerability reports and immediately update any plugins that have security-related fixes.

4. WORDPRESS CORE, THEME, PLUGIN & PHP UPDATES

WordPress Core, Themes and Plugins are always adapting and improving. And as new features are introduced, code is improved, bugs are fixed, and security flaws are addressed. One of the best ways to keep your website as secure as possible is to always be running the latest version of all software. I will update core WordPress installation, plugins and theme. I will make sure your site is fully backed up remotely before making any updates, and any problems or conflicts introduced due to the upgrades will be fixed free of charge. PHP updates are made via your hosting control panel and it is important to ensure you are running on a version that is fully supported and patched regularly for security vulnerabilities. While updating plugins I will also tidy (remove / replace abandoned plugins, delete spam comments).

5. WEBSITE PERFORMANCE CHECK

Website performance review gives you an overall representation of your visitors’ page load experience, both, how well it’s built and actual performance. Also included is Google Pagespeed reports, and Lighthouse Quality Reports on how your website functions on desktop and mobile devices. Setup of CloudFlare, and SSL. Performance check reports provided quarterly (every 3 reports)

6. SUMMARY REPORTS

I will always keep you in the loop – detailed notes/graphics/monthly comparisons are provided for every job.

———————————–

NOTE: While I take extreme care to prevent any malware attacks or hacks, unfortunately, no website is 100% secure. I am not responsible for any damage or harm to business arising out of issues with hosting providers, Google blacklisting, a malicious attack or hack, bugs or other errors. Please note that during updates themes can break, plugins can conflict, websites can crash and my heart temporarily skips a few beats.

Malware scans can determine your website to has been infected with malware. In the rare case that there is a conflict on your system, I can restore your site from a backup for free. Any additional time will cost $85/hour. The client will be consulted prior to commencing work. Technical support provided via email.

*Rates are available for information purposes only and are subject to change without notice.

"THE SERVICE AFTER LAUNCHING

HAS BEEN GREAT

Chantal was amazing every step of the way in designing our website. Extremely professional, responds to questions in a timely manner and was very patient. Very reasonable and the service after launching the site has been great. We would highly recommend ink design!”

 5/5

- TAMARA @ KRCOMREF.CA

The busy airbnb season is soon upon us on the coas