iThemes has just shipped iThemes Security Pro v5.3 which now comes with compromised password protection. This allows you to even further secure and protect your WordPress sites.
Compromised Password Protection
Compromised passwords are quite often used as a starting point for cracking multiple accounts. Unfortunately, people are still using the same login credentials across multiple websites. Once their password is exposed, attackers could compromise various accounts in just one or two attempts.
The WordPress security plugin now includes a brand new setting to refuse compromised passwords. This new feature is powered by Have I Been Pwned which allows you to detect whether passwords have appeared in a data breach. If this happens, you can easily force your WordPress site users to use passwords that do not appear in any known password breaches.
Please note: Plaintext passwords will never be sent to Have I Been Pwned. Instead, five characters of hashed passwords are sent via an encrypted connection to their API.
Pricing, Support & Updates
iThemes Security Pro can be purchased from as low as $80 for the Blogger plan for up to 2 sites and the Freelancer plan for $100 for up to 10 sites. A Developer plan for securing and protecting unlimited sites is available for just $150. The Gold plan for $197 on the other hand comes with unlimited sites.
All plans come with free ticketed support and updates for one year as well as 10 iThemes Sync sites.
By going for the Plugin Suite for $247, you’ll get instant access to their entire collection of WordPress plugins including BackupBuddy which now comes with improved staging and deployment features. Apart from that, you can also grab the Toolkit to get access to the security plugin.