Login attacks by spambots and hackerbots

Automated Brute Force Login attacks by spambots and hackerbots are a regular and ongoing type of website attack.  The volume and frequency of Brute Force Login attacks are steadily increasing and will continue to increase.  Brute Force attacks make up somewhere in the neighborhood of 85% (probably more like 90% to 95%) of the total of all types of ongoing website attacks these days.  BPS Login Security & Monitoring protects the WordPress Login page from Brute Force attacks, but if your username is publicly known/displayed or can be harvested by automated bots then your user account may get locked very frequently.

Changing your IP isn't much help. Typically spammers and hackers have millions of IP addresses and hostnames that they can switch to. This is typically completely automated in the attack scripts that they use.  ie “if IP address X is blocked use IP address Y…..”

We found that a CAPTCHA method is the optimum anti-spammer method to use. I recommend installing a CAPTCHA plugin.

What to do if your User Account is being locked repeatedly:

If you want to block multiple IP Addresses in a subnet then you would not include the last Octet of the IP Address.

[INSTALL THIS FOR ME NOW

Examples:  Using 46.119.35. blocks all IP address from 1-256 in the last Octet – 46.119.35.1 through 46.119.35.256.  You can also block from 46.119. to block all IP addresses that start with 46.119.

Please note that you can only carry on following instructions if you already have the plugin installed. For more information on plugin installation please contact us or see this page for pricing.

1. Add your IP Address blocking code to this Custom Code text box:  CUSTOM CODE BOTTOM HOTLINKING/FORBID COMMENT SPAMMERS/BLOCK BOTS/BLOCK IP/REDIRECT CODE
2. Click the Save Root Custom Code button.
3.  Go to the BPS Security Modes page and click the Root Folder BulletProof Mode Activate button.

# BLOCK/FORBID Spammers etc
Order Allow,Deny
Deny from 46.119.35.
Deny from 46.119.45.
Deny from 91.236.74.
Deny from 93.182.147.
Deny from 93.182.187.
Deny from 94.27.72.
Deny from 94.27.75.
Deny from 94.27.76.
Deny from 193.105.210.
Deny from 195.43.128.
Deny from 198.144.105.
Deny from 199.15.234.
Allow from all

=======================

# BLOCK/FORBID Chinese Spammers by CIDR Blocks
Order Allow,Deny
Deny from 27.8.0.0/13
Deny from 27.16.0.0/12
Deny from 27.36.0.0/14
Deny from 27.40.0.0/13
Deny from 27.50.128.0/17
Deny from 27.54.192.0/18
Deny from 27.98.208.0/20
Deny from 27.98.224.0/19
Deny from 27.99.128.0/17
Deny from 27.103.0.0/16
Deny from 27.106.128.0/18
Deny from 27.109.32.0/19
Deny from 27.112.0.0/18
Deny from 27.112.80.0/20
Deny from 27.113.128.0/18
Deny from 27.115.0.0/17
Deny from 27.128.0.0/15
Deny from 27.144.0.0/16
Deny from 27.148.0.0/14
Deny from 27.152.0.0/13
Deny from 27.184.0.0/13
Deny from 27.192.0.0/11
Deny from 27.224.0.0/14
Allow from all


ENQUIRE NOW 

You can read more articals about online attacts and how to help to prevent them happening CLICK HERE

Was this answer helpful?

Powered by WHMCompleteSolution