Do you have a WordPress powered website? Congratulations! You offer a great tool for hackers. It’s called WordPress REST API and it is enabled by default. REST API is a technology that allows performing almost any action or administrative tasks on a website remotely. The WP REST API is enabled by default starting [...]
Welcome a new version with reCAPTCHA and WordPress hooks that allow you to fine tune Cerber better Now you can use Google reCAPTCHA to protect WordPress registration form from spam registrations. Also reCAPTCHA available for lost password and login forms. How to setup reCAPTCHA. The registration process, WordPress registration [...]
As you already know, there is small, but very useful feature that called a list of prohibited logins/usernames. It’s a comma-separated list of usernames you do not want to be used on your website in any circumstances. That’s it? Nope, there is no “just in case” features in the WP Cerber Security plugin. [...]
IP Access Lists (commonly referred to as ACLs) are intended to restrict access to vital WordPress functions, WordPress login and registration forms from unwanted computers and bots. The WP Cerber plugin supports two types of access lists: White IP Access List and Black IP Access List. Both access lists are manually managed by [...]
You can create your own Custom login page (rename default wp-login.php) in no time. After you have configured the Custom login URL, the plugin will display wp-login.php page with the newly configured URL.
What is reCAPTCHA, anyway? reCAPTCHA is a human verification mechanism that created and maintained by Google as a free web service. WP Cerber supports reCAPTCHA for WooCommerce and WordPress forms as antispam feature. Why does reCAPTCHA not protect WordPress from bots and brute-force attacks? Because WordPress has three [...]
It can be easily done by having the jetFlow.io plugin installed and using a tiny workflow. Security Blog How to stop spam form submissions on your WordPress Security Blog Cerber Security Scanner Settings WordPress Security How To Restrict access to WordPress REST API Security Blog Traffic Inspector in a nutshell
What is new? Added ability to check and block prohibited usernames (logins). You can specify list of usernames (logins) on a new settings tab called Users. The plugin will immediately block any attempt to log in and will lock out any IP address have tried to use those logins. It’s recommended to have at least following [...]