Incoming
Incoming request
Bot, scanner, or malicious payload arrives at the edge.
Imunify360 + CloudLinux + Buckuply, on by default
Your site is protected — always.
Three security layers stop attacks before they reach your site. Daily off-site backups make recovery a one-click decision. We monitor 24/7 so you don't have to.
- ~14k
- Threats blocked / day
- < 5min
- Malware MTTR
- 14 days
- Backup retention
What we stop
The four threats that take WordPress sites down.
Most attacks are automated. Here's what hits, and what blocks it for you.
Malware injection
Imunify360 quarantines affected files automatically.
DDoS / volumetric
Edge filtering + rate limiting absorb floods at the network layer.
Brute-force logins
Failed attempts trigger IP-level lockouts within seconds.
Vulnerable plugins
Virtual patching shields you while you wait for the upstream fix.
Account hijack
TOTP-protected admin + audit log. Every action recorded.
Data loss
14-day off-site Buckuply. Restore by file, mailbox, or whole account.
How we stop attacks
Three layers between the attacker and your site.
Most hosts give you one. We layer Imunify360, CloudLinux, and our own monitoring so a single bypass never becomes a breach.
- Defence
Edge filter
Behavioural WAF inspects payload + reputation.
- Defence
CloudLinux LVE
Per-account isolation caps blast radius if the WAF misses.
- Defence
Imunify360
Real-time scan + auto-quarantine of any malicious write.
- Allowed
Clean request
Legitimate traffic reaches your site untouched.
Real flow. ~14,000 threats / day blocked at the WAF layer alone — your customers never see them.
Under the hood
The security stack that ships with every plan
Active defence03 of 03
Imunify360
Behavioural WAF, virtual patching, malware scan + auto-quarantine. Daily virus DB updates.
Updateddaily
CloudLinux LVE
Per-account RAM, CPU, and IO fences. CageFS jails the filesystem per user.
Blast radius1 site
DDoS edge filtering
Volumetric and protocol attacks absorbed before they reach your origin.
CapacityTbps-scale
Recovery + visibility03 of 03
Buckuply · 14 days
Off-site daily snapshots. Restore by file, mailbox, account — one click each.
Retention14 days
Free SSL · auto-renewed
Let's Encrypt + AutoSSL across every domain and subdomain.
Coverage100% TLS
24/7 monitoring + audit log
Our team watches every node. Every admin action is logged + reviewable.
On-callalways
Daily safety
What runs in the background, every day.
Security isn't a checkbox you tick on signup. It's a set of jobs that run while you sleep.
- Daily off-site backup
Snapshots taken every 24h, kept 14 days, restorable in clicks.
- Imunify360 full scan
Every account scanned daily; new signatures pulled from upstream.
- TLS renewal
Let's Encrypt rotated automatically before expiry.
- Audit log review
Suspicious admin actions surfaced to our on-call team.
BuckuplyImunify360CloudLinuxAudit logLet's Encrypt
security.reportLast 24h
Threats blocked14,221
Backups taken100%
TLS coverage100%
Mean recovery< 5 min
From customers we caught it for
Stories you'd rather not have to tell.
“Imunify360 quarantined a malware injection at 3 AM. Arabic-speaking engineer had patched the source by sunrise. That's the difference.”
“Got hit by a DDoS during a launch week. I didn't know until they showed me the graph the next day.”
“Restored a deleted product page from yesterday's backup in two clicks. Saved us an afternoon and an apology.”
Three layers. Daily backups. 24/7 humans on call.
Sleep better tonight.
Free migration, free 30-day money-back, and a real engineer reachable on every channel.
Hosting that protects itself.
Imunify360 + CloudLinux + Buckuply, configured for you. 30-day money-back, free migration, no contract lock-in.
Imunify360 includedevery plan
CloudLinux LVEevery account
Daily backups · 14doff-site
Arabic-English support24 / 7