I am the half-assed "web guy" for a professional organization. We use our web site to sell tickets to an annual banquet, and we've been successfully using wordpress and paypal since 2008.
However, I dropped the ball with theme and plug-in updates, it seems, and my web site, plus some other "non profit event sites" that were sub-domains on my HostGator account, where severely battered by malware and whatever else there is.
To save my primary site, I have been paying $150 per month to SiteLock for firewall and scanning protection. We just started our fifth month with SL, and today I discovered my site has been completely hijacked by a Middle East extremist organization.
I guess I am just venting to folks who know more and may be able to make some suggestions. What is a small organization of volunteers to do? We can't afford to lose our site(s), but can't afford to survive these kinds of attacks, either.
Is worpress doomed by insecurities? is my weakness in my host company (HostGator)? Am I wasting money with SiteLock? is there a better option?
Thanks for letting me whine!