Why would my site be hacked?
Hackers can profit from any website even if you have a small website with very little traffic.
For example, a hacker could turn your hosting account into a mail server to send out spam email. You don't need to have any traffic for a hacker to profit that way.
If your website has more traffic then a hacker has more options to scam, spam, monetize or spread the word about their cause (hactivists)
Why do I need these services?
You want the peace of mind that comes with us protecting your site and doing fast hacker clean-ups. You can focus on the rest of your life.
1. Brute Force Attacks
Brute force attacks are carried out on the login.php and the XMLRPC.php file. These are the most common types attacks and we stop them dead in their tracks.
2. SQL Injections
Using automated tools, hackers test the contact forms and input fields for SQL injection vulnerabilities. Once found, they can put malicious code into your database or delete your database altogether. That's very bad. We keep them out. That’s very good.
3. Bad PHP Execution
If a hacker uploads a PHP script to your uploads folder (it's easier than you think), that PHP script can be executed remotely and wreak havoc on your website. We make sure that even if this type of file is uploaded, it can't be executed.
4. Block Folder Access
Many WordPress sites don't lock down the wp-includes folder leaving your site open to all kinds of attacks. We make sure that your wp-includes files are safe and sound.
5. Unleash The .htaccess File
The .htaccess is one of the most powerful files on your server. We leverage it's power to protect your site. We also make sure that the .htaccess file is protected at all times.
6. Unparalleled Support
We know how stressful it is to deal with security issues or being hacked. That is why we are very hands-on to help you solve your problems as quickly as possible.
If you 'harden' my WordPress site can you guarantee it won't be hacked?
If someone really wants to hack into your website they can. The CIA, NSA, Pentagon and most of the world's governments have all been hacked and they have massive dedicated teams dedicated solely to cyber-security.
The purpose of the WordPress Hardening service is to make sure that your site is not low-hanging fruit and easy prey for would-be hackers.
Most WordPress security threats come from automated tools that break into websites. WordPress hardening is the process of making your site 'invisible' to those automated tools. Having said all of that, we do guarantee our work. Click here to learn more.
Questions people frequently ask us
If you have a minute to spare, you will have all your basic questions answered.
Does it matter where I host my website?
In short, yes. We recommend premium WordPress hosting for its security benefits. The 'discount' hosting companies provide a great service, but they are not able to provide enhanced services because of the extra cost. We provide a killer premium hosting package that helps keep your site locked down tight. Take a look at it here.
Do you offer any ‘bulk’ discounts?
If you look around, you will find out our services are already the lowest out there (even when you factor in our competitors ‘bulk’ rates). If you find something truly ‘apples to apples’ better, let us know and we will drop our prices or boost our service offering for you and everyone else (and send you a birthday gift to boot). You can reach us by clicking here. We aim to please.
How can I pay you?
To make you happy (and let you pile up your favourite credit card points) we accept any major form of plastic payment you want to use (i.e. Visa, Mastercard, American Express, Discover, and PayPal). Once you sign up for a package, your card will be charged automatically either yearly (may as well, you save a bundle this way) or monthly on an ongoing basis until you tell us you want to cancel or change your plan package.
How does your 100% satisfaction policy work?
If you are not happy with our service, you get all your money back during the first 30 days of service with us. The only exception to this is in cases where you order something ‘extra’ like a site hack clean-up or site add-on. In this case (assuming we did what we were told) there would either not be a refund or there would be a reduced refund depending on the circumstances.
If you 'harden' my WordPress site can you guarantee it won't be hacked?
If someone really wants to hack into your website they can. The CIA, NSA, Pentagon and most of the world's governments have all been hacked and they have entire departments dedicated to cyber-security.
The purpose of the WordPress Hardening service is to make sure that your site is no low-hanging fruit.
Most WordPress security threats come from automated tools that break into websites. WordPress hardening is the process of making your site 'invisible' to those automated tools.
Is there a limit to the support requests I can make?
No. As long as the support requests relate to a product(s) you've purchased you can request support at any time. If you need WPDoneForYou to help you with anything else WordPress related we encourage you to take a look at our other services: maintenance, security, SEO, and WP Tasks™.
Can I become an affiliate and resell for you guys?
If you like making really easy recurring money (by doing very little) and simply refer people to us who you think would love our services...then yes. Click here to learn more and sign up.
Does WPDoneForYou do web hosting?
Sure do. We offer highly secure premium hosting very inexpensively. Click here to check out our killer and affordable premium packages.
WordPress Security Services Pricing & Signup
Professional and friendly WordPress security and hack support. No risk or stress. We'll take care of it! Pick a package.
WP Hardening
- $197USDOne-time payment
- Install/configure a login attempt limits pluginThis security measure is a must to help stop brute force attacks on your WordPress login page.
- Brute force countermeasuresBrute Force attacks involve hackers gaining access to your website by deciphering your username and password. We stop these attacks dead in their tracks.
- Block SQL InjectionsHackers use an SQL injection when they want to put malicious code into your database or when they want to delete your database. We make sure it doesn't happen.
- Restrict directory browsingHackers browse directories on your website to determine vulnerabilities in your themes and plugins. This information is gives hackers unfettered access to your sites core functions.
- Restrict script executionHackers often upload scripts into the wp-contents folder and run them remotely to take over your site whenever they want. We lock them out.
- Disable access to core foldersHackers can down your site through the wp-includes folder. We block hackers from accessing that folder.
- Protect your wp-config.php fileIf your wp-config.php can be accessed outside of the server you're in big trouble. It is the most important file on your WordPress site and hackers would love to get their hands on it. We make sure they don't!
- Lock down the .htaccess fileThe .htaccess file is a powerful file and popular point of access for hackers wanting to compromise your system. We will lock it up tight.
WP Hacked Site Cleanup
- $497USDOne-time payment
- Get StartedA content delivery network (CDN) delivers all your images and PDFs from dedicated, super-fast servers. So your site, your images and your PDFs will load faster.
- Digital forensic scanWe determine where and how your site has be compromised and infected.
- Integrity assessment of WordPress core filesMalicious injections and strings are identified so your compromised files can be cleaned.
- Reinstallation of clean source filesWhen modified files are found on your site, we remove them and replace them with files from an uncontaminated fresh source.
- Scan and clean latest modified filesOnce we have your site intact, we inspect your theme and plugin files. Depending on the severity of attack we will reinstall them manually.
- Password reset for all usersTo ‘harden’ and avoid the future reinfection of your site from further attacks, we will reset passwords for all users. This kills any active malicious session and prevents future threatening incursions.
- E-mail address reviewWe inspect all email addresses of all registered users to determine if any of them were modified. This prevents hackers from later resetting your passwords and getting back into your site.
- Server level file and system reviewWe double check for all signs of compromise to ensure your system is healthy. We look at all your pages, posts, and widgets, to make sure none of them were secretly modified.
*We can only disable this file if you do not use 3rd party apps to publish to your WordPress site remotely or if you use the email-to-publish feature.

30 Day, Hack Free Guarantee
We should be committed for being as committed as we are to keeping your site secure. We are certain that your site will be squeaky clean when we have completed our work on it. So certain, that if your site is hacked within 30 days of us completing either a WP Hardening or our WP Hacked Site Cleanup service we will clean up you site for FREE. Notice there are no asterisks after that last statement. We can’t wait to take your WordPress pain away. Let's get started.

Mailing list perks
Subscribe today to stay in-the-know on our latest blog posts, feature updates, free downloads, special mailing-list only promotions/discounts and more.
Get on the list
Enter your name and email below to be kept up-to-date on everything WP Done For You.
We value your privacy and would never spam you

Get this for free
Discover the 12 SEO Foundation steps that every WordPress site needs to make sure their maximizing their SEO efforts. Free PDF download:
Get the 12 step SEO Foundations download
Enter your name and email below to get this winning PDF instantly.
We value your privacy and would never spam you. By submitting this form you are agreeing to sign up for the WPDFY mailing list.

Everything done for you
You can have us do everything you could possibly need done on your WordPress site: security, search optimization and maintenance.