WordPress websites are among the most common targets of automated attacks. Based on our network traffic analysis and customer feedback, we see large volumes of “login attempt” attacks against WordPress and other content management systems on a daily basis. Unfortunately, some of these attacks are successful: unauthorized users gain access to the admin interface and then hijack or compromise the website.
To address this risk, our company has developed a custom, application-level (APP) protection solution that significantly reduces the chance of unauthorized access.
What does WordPress / APP Protection do?
This new feature allows you to restrict access to administrative interfaces based on IP addresses, easily and with just a few clicks via the Client Portal.
Under the new “WordPress / APP Protection” menu, you can:
restrict admin access to Hungarian IP addresses only (IP ranges announced on BIX),
allow access from individually specified, trusted IP addresses,
apply the protection not only to WordPress, but also to other CMS platforms or custom admin interfaces.
The protection can be disabled if needed; however, this is not recommended for security reasons.
Default protection
Access to the admin interface is restricted to Hungarian IP ranges by default for all customers, blocking most foreign attacks before they can even reach the login page.
Simple setup, significantly improved security — without additional plugins or code changes.
