Account Security
We secure your site and data through strong encryption, firewalls, monitoring, and regular security testing, and all WordPress.com customers have access to extra security settings, like two-step and security key authentication. Together, we can keep your sites safe and secure.
Keep Your Site Safe and Secure
The security of your website and your personal data is always a priority. This page describes what we do to help protect your site and your personal information, along with added steps we recommend you take to do the same.
Security Settings
You can manage certain aspects of your site’s security if you have a WordPress.com Creator or Entrepreneur plan. This guide will explain each setting.
Enable Two-Step Authentication
Your WordPress.com site is your home on the internet, and you want to keep that home safe. Hopefully, you’ve already chosen a unique and hard-to-crack password for your account. To add another layer of home security, you can enable two-step authentication by following the steps in this guide.
Security Key Authentication
WordPress.com supports login verification with virtual and physical security keys using the WebAuthn standard. This guide will show you how to add and remove security keys.
Protect Your Website from Malware
Malware (malicious software) is any software intentionally designed to cause damage to a computer, server, client, or network. This guide explains what website owners can do to avoid malware.
Last updated: February 21, 2024