Alarming rate of blocked malicious attempts

Chancer

Member
Joined
Jun 28, 2016
Messages
125
Points
18
Over the night 2 of my sites acquired 200+ blocked malicious attempts.
This is getting me worried…
Is there anything i can do to prevent people from trying to brute-force their way in?

(both sites are WordPress and currently i have Akismet and JetPack installed on them)


The block counters are raising before my eyes :help:
 

imnathanjames

New member
Joined
Jul 24, 2016
Messages
135
Points
0
Have you got wordfence installed?

I use it. it is really good.
I have a tshirt site and everyman and his dog seem to want to get inside it.
 

Chancer

Member
Joined
Jun 28, 2016
Messages
125
Points
18
Thank you for the suggestion. I installed it now, hopefully it'll work as is. Otherwise i'll buy the premium version and block all IPs except my own :D
 

Ron Killian

New member
Joined
Dec 3, 2015
Messages
804
Points
0
I agree, wordfence can be very helpful.

As far as blocking IP's you want to be careful, you could block legit IP's and lose traffic and/or sales. Well, sure you know that.

Another thing, if you notice they are trying to log in with certain user names, you can set wordfence to automatically block any one (or bot) that tries to login with that user name. That has helped me. Like amin, (long as you are not using admin, which you shouldn't), and they usually try the domain name as a username or variations of it.

I also think you can block when they try to access a given url, but that should only be for url's that are not valid.

Wordfence has a firewall too, might be good for you in this instance, but I don't know that much about it.

Akismet is only for comment spam, and not really the best. But it helps.
 

imnathanjames

New member
Joined
Jul 24, 2016
Messages
135
Points
0
let us know how you get on.
At first it can be alarming because they email you about anyone trying to get in. You get used to it tho.
The wordfence team do a lot of research and background work keeping it all going and investigating potential viruses and threats. They also work together with plugin providers to identify any potential risks.

Hope it helps mate.
 

vishwa

Well-known member
Joined
May 12, 2014
Messages
1,143
Points
63
Getting a security plugin is surely help you fight against spam and hacking attempts. I highly recommend to use Wordfence. If possible use Askimet and also use captcha on your login and registrations pages. Monitor your traffic and block any ip that you find suspected. You can block ip using Wordfence and it is also available on free version.
 

Chancer

Member
Joined
Jun 28, 2016
Messages
125
Points
18
Thank you all, wordfence seems to be working and hackers seem to have given up :)

By the way, is there any possibility that some servers (depending on the webhost) are attacked more often/more susceptible to attacks?
I'm asking because i'm looking at some cheaper hosts to create a PBN.
 

EpicGlobalWeb

New member
Joined
Jan 24, 2016
Messages
467
Points
0
Over the night 2 of my sites acquired 200+ blocked malicious attempts.
This is getting me worried…
Is there anything i can do to prevent people from trying to brute-force their way in?

(both sites are WordPress and currently i have Akismet and JetPack installed on them)


The block counters are raising before my eyes :help:
Before I answer this question, how are they being blocked? Are their IP's getting blocked or are they trying to log into something? If this is an urgent security matter, please PM me and I'll fix it if it's a DDoS or Database breech issue pro-bono.
 
Older threads
Replies
5
Views
2,286
Replies
4
Views
3,588
Replies
21
Views
11,881
Replies
12
Views
3,378
Newer threads
Replies
2
Views
5,071
Replies
13
Views
6,626
Replies
7
Views
4,271
Replies
7
Views
3,870
Replies
21
Views
7,274
Recommended threads

Referral contests

Referral link for :

Sponsors

Popular tags

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top