Online Course: Anti-Hacker Security for WordPress 2016

This is my first Video Course on Udemy. I wanted to test the eLearning Plattform and created this super essential course on WordPress Security because I have found that  it is an incredibly neglected issue with developers and agencies.

There is more backstory about the problems that I had with this experiment in the Recap Video of Week 02 here.

More than 1.000+ Students already enrolled!

As I write this, the Anti-Hacker Security course already has more than 1.000+ students enrolled and here is the link for you to go check it out! It´s only 20 USD and I guarantee you will never have to worry about your WordPress Security again!

Make your WordPress website Hacker Proof in just 1 HOUR!

Watch the video to see what I teach you in this course. Follow along what I do step by step and you will never have to worry about your website security again!

WordPress is powering more than 75 Million websites.

That is more than 25{29aa455276397f00c1193b4e8f2cd2513ab565e44090161a127889106909cabd} of the whole internet. This makes it a popular target for attackers. Every single day tens of thousands of WordPress websites are being attacked at random.

This course is for you if you are using WordPress to power your website.

No matter if you are a blogger, a marketer, or if you are running your eCommerce store with WooCommerce. If you think a hacker attack will never happen to you because your website is too unimportant for a hacker to target, think again! Hackers are especially targeting domain names that have just been registered or websites with little to no traffic that are less likely to be heavily protected. Most hacker attacks are completely automated, and random, which means not a single website is safe anymore.

Bots are automatically testing your website configuration

against the most commonly known vulnerabilities. Successful attacks most often happen due to simple configuration errors or through plugins and themes that have not been updated on a regular basis.

It’s quite scary

when I think about whatever a hacker can possibly do once they get access to your administration backend. Hackers can hijack your website to send tons of SPAM, redirect your site traffic to other domains, delete files from your database, take over complete control of your administration backend or even damage your whole server structure with injected malware.

What most people don´t know

is that your hosting provider only scans for virus and malware infections, but by then it is much too late because the attack has already been successful. That also means they cannot even realize when your site has been hacked. That is why you need to understand that the protection of your WordPress blog really is in your own hands!

By the end of this course, you will know the most vulnerable points of attack and be able to implement the security plugins needed to protect your WordPress website from a variety of the most common attacks. As we are going to use a combination of free plugins, we can make sure that the bundled free functionality is providing all the necessary features like a premium software.

Video Transcription:

Are you one of the 75 million people running your blog with WordPress? Maybe even in combination with your WooCommerce store? Then you are most probably already the target of one of those massive hacker attacks that have been going on in the last couple of months.

What? Do you really think that your hosting company is protecting you? Well then think again, because they do nothing to protect your WordPress installation itself from hacker attacks! They might not even notice your server is hijacked until it is too late! Wouldn´t it be much better to prevent any hacker attack right from the start?

In this step by step video tutorial course, I will show you the most efficient Anti-Hacker security setup to make your WordPress blog bulletproof against hacker attacks in just about one hour! And I will walk you through the most common vulnerabilities against which you need to secure your WordPress blog. What I will show you is a proven and time-tested method that I am personally using on my very own WordPress installs, as well as ALL of my customer’s websites. In fact, it is the VERY FIRST THING I do on a fresh WordPress install.

You wonder why you should install security when your website is still offline and under development? Because as soon as you register a new domain name, like my website com the registration details are openly available on the internet for everyone to see. Have you ever wondered why you are getting emails from any number of developers as soon as you register a domain? Very same thing! That means that a hacker will know that your website is brand new and most likely an easy target for his attack.

Don´t believe me? No problem!

I will show you proof that websites are indeed under attack as soon as you install WordPress. The Funny thing is that while I was recording this tutorial, one of my demo websites was under a brute force attack. Of course, I recorded the whole thing, so now I can even show you exactly how you set up email alerts and then stop any hacker attack at once. All by yourself and with just a few clicks. And should it come to the worst case scenario and a hacker messes around with your website, I will also show you how to backup your website on a daily basis and restore the last clean version with just a simple push of a button.

Now, I would love to help you out protecting your WordPress websites from any hacker attacks. All you need to do is click the register button for this course, follow my step by step tutorial and then you can forever after sleep well knowing that your WordPress blog and WooCommerce store is well protected and absolutely secure! // End of Transcription

That doesn´t happen to me anyway!

Now let´s think about some ways a hacker could wreak havoc on your website without you even knowing something is wrong. Oh, you think that you will know if someone else has access? Well, think again, because a hacker can do any damage that he wants to your website and you will not even know what is going on.

Just imagine you are running a WooCommerce store, and someone switches your payment accounts against his own. Now the customers will pay the hacker instead of you, but you will still be held responsible for those sales. Huh? Very bad situation! First, the money is gone and then you are in trouble with the customers that still want their merchandise as well. Or what if he changes all of your prices to zero? Now, this is something that you will find out soon enough, but you are still in trouble with your customers demanding their free stuff.

Another very nasty but one of the most common kinds of attacks is turning your server into a so-called Zombie or Spambot and misusing your IP address to send thousands of spam emails every day. You will not even realize that this process is going on in the background. The only indication might be that your website is slower than normal. Even your hosting company might not flag that as malicious behavior. But let´s be assured that someone who will be recognizing all this SPAM is Google. And the IP address of your server will get a severe penalty for sending all that spam. Now no matter how much money you spend on SEO optimization, you will NEVER gain any good search rankings unless you remove the spambot and work with the Google team to clean up your IP´s name.

Such a situation is especially nasty if you are using a shared hosting package along with many other customers on the same hosting server. Because even when any other person´s website on the same IP address is infected, then every website that is on that same server is flagged by Google as well! Huh! Bad thing, because then it is not even your fault! Or maybe it is because one might say that you were too money wise to pay for a high-quality hosting solution.

I have a CONFESSION to make!

In the end, it doesn´t matter what a hacker will do to your website; I can assure you it will not be something pleasant. How do I know? Well, I have to admit that I have not always been this protective about my websites security and the worst kind of scenario actually happened to myself a few years ago. I was paying for a managed VPS server with a well-known German hosting company. I had 16 websites running in development mode as a staging area before their live launch on my customers hosting accounts and some of them were smaller sites of my own in production mode.

I was just running a promotion for my brand new online marketplace against an older and well established but technologically very outdated competitor. Basically, his site was a mess (AND STILL IS TODAY BY THE WAY!), but there was little to no other competition in that niche, so he reigned supreme. I was onboarding raving fans in the first few weeks because of the fresh design and easy usability, even though I had the typical chicken and the egg problem of having no content to sell to customers. But that was O.K. because I was converting about 70{29aa455276397f00c1193b4e8f2cd2513ab565e44090161a127889106909cabd} of all people I was reaching out to, almost immediately.

The problem was that I must have poked someone quite a bit when I suddenly realized that something funky was going on on my website. I was getting error messages and database connection problems even though all of my plugins were up to date and the whole configuration was running very smooth for the last few days.


So it was clear that I had a problem with my server, and as I wanted to fix this as fast as possible, I contacted my hosting company and told them to help me out solve this issue. What happened next was a fist punch to the gut: The immediately blocked access to my whole server! NO warnings, NO efforts to help solve the problem, but they kicked me out of my own account!


Then I received an email with the info that one of my websites (the new online marketplace) was infected by a malicious malware and that I needed to clean the site before I could get access to the server again. Attached was a list of the infected files. When I opened that list, it contained each any every file of the whole WordPress install on that server.

What? Do you see the problem here? I did not have access to that server anymore, but should clean it of malware which was basically infecting the whole website!? And I had to tell the hosting company there was something wrong in the first place! Are you serious? Well, now you might wonder if that is not the job of the hosting company – checking for and removing threats in real time as they occur? And what about recovering the original malware free website from a backup? Well, they told me that this problem seems to have been going on for some time and that a backup would most probably be infected as well! What the F###?!?!?

In the end, I lost ALL 16 websites

because I was not able to recover any data from the suspended account and as I had chosen to keep the backups at my hosting company they were NOT willing to set up anything that might be infected. Instead, they deleted the whole account when I canceled my subscription package. But of course, they still charged me to the end of the regular contract!

O.K. in hindsight now I know there were some things that could have done to resolve the situation, but back then I was so perplexed that I made every wrong decision I could imagine!

Now, I hope that you will never live through such a horror story! And that is why I created this AntiHacker Security course for WordPress and WooCommerce. I did learn from my mistakes and so can you! Protect yourself against hacker attacks by installing the right combination of free security tools. This is a set it and forget it kind of thing, so there is no excuse for you anymore if your website has been hacked!

Watch the Course Promo Video

 Contact & Imprint | Privacy Policy | Privacy SettingsDisclaimer | Terms of Service

©2021 Startup School - Online Marketing & Consulting

All phone mockups courtesy of


Log in with your credentials

Forgot your details?