How to protect your WordPress site from fraud

protect your WordPress site

The downside of having your own website or domain name is registering in a kind of public directory with personal information. Anyone can view the site and immediately see the owner, as well as their contact information. It’s okay until marketers and scammers start looking for you.

How many times have you seen an email from an unknown person claiming to be able to fix your blog’s or website’s SEO issues? Probably often.

If you’re not careful, you can end up giving away sensitive information voluntarily, “opening the door” to hackers and unscrupulous people. That’s why it’s important to recognize and understand common scams in order to protect yourself and your resource.

Fraud with extortion

Recently, scammers have started targeting website owners with extortion. They threaten to blacklist a website or domain for non-compliance. The threat is pretty simple. You have to pay (usually in cryptocurrency) otherwise they will destroy your site’s reputation.

The scammers claim they will do this through mass manipulation. They will post a bunch of offensive messages and comments on forums, review sites, send hundreds of emails to advertisers. The idea is to cause outrage on a large scale, to encourage users to have a negative attitude towards the resource.

In addition, they can target a website with DDoS or distributed denial of service attacks.

SEO Marketing Fraud

Every domain owner can face similar scams. The scammers claim to be from a well-known marketing agency and promise to boost your site’s popularity and improve search engine rankings.

Then you pay them money and maybe provide administrative access to the site. Bottom line: theft of the entire site or the personal data of your visitors.

Also see: How to set a password expiration date in WordPress

The best way to avoid this is to simply ignore all cold emails about content marketing and SEO improvements. If you need such services, you will still spend time researching potential companies on your own.

If the letter is of interest to you, look for contacts and reviews about the specified company. If it officially provides such services and enjoys credibility with users, you can work with it.

Web Design Fraud

The scam targets web developers and designers who have their own web resources.

The scammer acts as a potential client requesting web design and development services. He starts by making an agreement with you and then pays a large amount of money to your company. Further, he reports that he “made a mistake” by paying more than necessary. Then he convinces you to agree to transfer the “extra” money to a third party. She is usually another “reputed” agency (consultant or fellow designer).

Now you have a large amount of money. You also transferred a large amount to a fake agency or partner.

The scammer then uses the stolen card or fraudulent information to make the initial payment. When this is ultimately disputed by the real cardholder or cancelled, you are liable for the money transferred to the third party.


Never give in to the demands of scammers. There is no guarantee that they will do what they threaten. There is no point in making an effort with a site whose owner does not respond to threats. As a result, they will not receive any benefit.

Also see: How to Paste Link to WordPress Source

If you notice a suspicious letter in your inbox with a suggestion that your site will take off in the search results in a week or threats that it will be harmed, just mark the letter as SPAM and delete it forever.

For your peace of mind, you can ask on the Web who is behind the e-mail address from which the letter came.


Leave a comment

Your email address will not be published. Required fields are marked *