[ad_1]
I’m using Limit Login Attempts and I can see that every few days there will be a series of attempted logins. Admin accounts are secured with very strong passwords and 2FA, so I’m not too concerned about that. But I’m just wondering if I need to be worried at all? I’m assuming it mostly bots just looking for vulnerabilities? At first, whenever this happened I added the IP address to the blacklist but I think maybe that’s unnecessary? Any suggestions?
[ad_2]
You can ignore them, since you’re using strong passwords. And I’m assuming you’re keeping a close eye on theme/plugin updates. The bots are just looking for low hanging fruit (of which there is a lot of when it comes to WP sites).
If they annoy you or you’re concerned about bandwidth usage/performance impact, investigate the source – in my experience bot spam just comes from a select few countries, which I setup blocking rules for in cloudflare WAF. Blocking by ip address is pointless – bots generally run off vps servers that can be spun up on a new ip address every few hours.