If your site runs WordPress, it’s a target.
You didn’t do anything wrong. WordPress powers 43% of the web, making it the world’s most popular website platform – but also the world’s most attacked platform.
Most hosting providers offer basic security: firewalls, malware scans, SSL certificates. And while those matter, they’re solving a different problem than the one that actually takes WordPress sites down.
Think of website security as layers. The outer layers – network firewalls, DDoS protection, SSL – defend against traffic-level attacks. They’re essential, and xCloud has them. But they’re designed to block bad actors trying to force their way in.
They have no answer for an attacker who exploits a vulnerability inside a legitimate, trusted plugin that’s already running on your site.
That’s the gap. And it’s where the vast majority of real WordPress compromises happen.
A plugin with a known vulnerability is an unlocked door inside an otherwise secure building. The perimeter defenses don’t see anything wrong – the door looks legitimate.
Traditional security tools weren’t built to watch for that. They react to suspicious traffic, not to vulnerable code.
This is exactly where Patchstack sits. It operates at the application layer – one level deeper – monitoring the plugins, themes, and core files that make up your WordPress site.
When a vulnerability is identified in any component, Patchstack deploys a mitigation rule: a targeted firewall rule that blocks exploitation of that specific weakness, without touching your website or plugin code.
The result is a complete security stack. xCloud handles the infrastructure and perimeter. Patchstack closes the gap at the application layer where the real risk lives.
Most hosting providers leave that gap open. We don’t.
How Site Security PRO protects your websites
We partnered with Patchstack, the world’s #1 WordPress vulnerability detection and mitigation platform, to build Site Security PRO directly into your xCloud dashboard.
When a new vulnerability is discovered – often before it’s made public – Patchstack deploys a mitigation rule automatically. No plugin updates required. No manual intervention.
And with the median time to mass exploitation for heavily exploited vulnerabilities at 5 hours, Patchstack closes the gap that would otherwise leave your site exposed before plugin developers could even roll out an update.
With Site Security PRO and Patchstack, your site is protected while you sleep.
Results: First 90 days of protection
In the first 90 days after rolling out Site Security PRO across our platform:
- 53,000+ threats blocked
- 300+ WordPress sites protected
Real attacks. Stopped automatically. On real sites.
Site Security PRO means you don’t have to become a security expert to stay protected. It runs in the background, handles the threats automatically, and gives you visibility into exactly what’s being blocked.
At $2/site/month, it’s the most cost-effective way to protect your site.
For agencies and freelancers: turn security into recurring revenue
If you manage WordPress sites for clients, Site Security PRO isn’t just a protection tool – it’s a business model.
Most agencies already offer some form of maintenance plan. But “we keep your plugins updated” is a hard sell. Clients don’t feel it, don’t see it, and increasingly don’t want to pay for it.
Proactive, real-time threat blocking is different. It’s tangible. You can show clients a monthly report of exactly how many attacks were stopped on their site.
That’s a conversation-changer – and a retention tool.
Step 1. Bundle it into your retainer
At $2/site/month, your cost is minimal, and it’s an easy value-add that justifies the fee and strengthens the package.
Step 2. Use the data in client reports
“We blocked 47 threats on your site last month” is a far more compelling update than “we ran backups and updated plugins.” Clients who see that report don’t cancel.
Step 3. Win new clients with a stronger pitch
Being able to say your hosting stack includes enterprise-grade vulnerability protection, backed by real threat data, is a genuine differentiator. Most freelancers and small agencies can’t say that.
Patchstack + Site Security PRO lets you offer something most of your competitors aren’t, at a price point that makes it a no-brainer to include in every client engagement.
Get started
Activating Site Security PRO takes about two minutes:
- Go to your xCloud dashboard
- Select the site you want to protect
- Add Site Security PRO under Addons
- Done – protection starts immediately!
Your hosting should protect you. That’s exactly what xCloud is built to do.
Site Security PRO is powered by Patchstack, the industry leader in WordPress vulnerability detection and mitigation.
