[ad_1]
I have Wordfence installed and I get notifications EVERYDAY that people overseas in various countries(I’m in the US) have tried to log into my site. I’ve been getting at least 8 of these emails a day for the past 2 weeks.
2 weeks ago someone did log in and deleted wordfence. I reinstalled wordfence, ran multiple scans, and deleted all malicious files that allowed backdoors. I also enabled 2FA. But now I constantly get email alerts of these attempted logins.
I’m most concerned that she installed some malicious scripts that’d tank my SEO. Should I be concerned?
[ad_2]
1. Keep your website themes and plugins updated.
2. Don’t remove or uninstall Wordfence
3. Increase wordfence ‘Amount of time a user is locked out ‘ to 2 months, ‘Lock out after how many login failures ‘, ‘Lock out after how many forgot password attempts ‘ to just 2, ‘Count failures over what time period 1 day that should help a bit
**I’m most concerned that she installed some malicious scripts that’d tank my SEO. Should I be concerned?**
**-** Since you already “removed” malicious files just manually check your website for any unnecessary links and remove them manually if you find anything.
It’s not an issue they’re attempting to log in, it’s only an issue when they log in. 2FA will keep them at bay for the most part, otherwise cloudflare would probably reduce a lot of bot activity.