-
7 Ways to Prevent Fake Registrations on WordPress (with CleanTalk)
Fake registrations are more than a minor admin inconvenience. They fill your database with junk accounts, waste moderation time, reduce signup quality, and make it harder to understand what real user activity looks like. For WordPress sites, this problem is especially common. Registration forms are public by design, which makes them an easy target for
FEEDBACK LOG
The Latest
-
Best practices to protect e-commerce sites
Online shopping has always attracted intruders: it is a source of credit card data (now almost irrelevant); user data; data about orders and market trends (consumer demand); a traffic source; manipulation with the discount coupons, etc. An e-commerce site may be attacked as intruders in “free hunting” (non-targeted attack) and by the request of unfair…
-
Protect SSH from brute-force on any port
Today I was interested in the survey whether it is necessary to move SSH to a nonstandard port. The survey is not as interesting as the way the author @zivot_je_cudo to protect SSH from brute-force password: after wrong connection attempts to block new attempts within 20 seconds. The delay apparently chosen empirically on the basis…
-
How to strengthen the protection of passwords of “12345” from brute-force attack
Object: Web login form. Given task: to strengthen the protection of the user’s account from the selection of a simple password to his account, using a minimum of resources. What is the minimum of resources? It does not use a table-reference to block by IP-address and User-Agent. Do not use unnecessary requests to the system;…
-
Fraud Prevention with CleanTalk
CleanTalk started to provide its database of IP addresses for banks, payment services, and the companies, evaluating the risk of fraud that strengthens the existing security system of the organization bringing it to a new level. Fraud can happen anywhere in the eCommerce world. It doesn’t matter if you’re running a small online business or…