WordPress site security

The vast majority of attacks in 2022 targeted vulnerabilities in practice and process, rather than in software.