diff --git a/WordPress-Security-Tips.md b/WordPress-Security-Tips.md
index b178aee..5443cc5 100644
--- a/WordPress-Security-Tips.md
+++ b/WordPress-Security-Tips.md
@@ -14,7 +14,7 @@ WordPress used to set the 'admin' username by default on all installations. In r
 
 **4. Keep plugin installations to a minimum.**
 
-Through experience we've found that WordPress plugins are normally the weakest link in WordPress blog's security. Many plugins are susceptible to Cross-Site Scripting (XSS), SQL Injection and other attacks. By keeping plugin installations to a minimum you reduce the attack surface.
+Through experience we've found that WordPress plugins are normally the weakest link in a WordPress blog's security. Many plugins are susceptible to Cross-Site Scripting (XSS), SQL Injection and other attacks. By keeping plugin installations to a minimum you reduce the attack surface.
 
 **5. Move the wp_config.php file one directory up, outside of the web root directory.**