Please Help!!
-
Our site has been having issues since early this morning. It seems we might have been the victims of a DDOS style attack, via the check out form. We have been receiving about 5 order submissions a minute for one of the products on our main site, crosscreeknursery.com. It looks like the submissions are coming from numerous burner emails. The last time we were able to access the admin for the site was about 8am est. We were able to use a work around to access some of the admin. I was trying to implement a plugin for check out verification to prevent the attack but now I’m not able to access the wp-admin at all. We keep getting too many redirects. My CEO did activate the recaptcha for woo commerce plugin. I’m wondering if that might have caused this or if the attacker used the ddos to escalate the attack. I have cleared cookies, used multiple browsers, tried a different network, and nothing has changed. Please help!
The blog I need help with is: (visible only to logged in users)
-
-
Hey there,
Thanks for reaching out.
CORRECTION! http://www.crosscreeknursery.com is the website
It doesn’t look like http://www.crosscreeknursery.com is hosted with WordPress.com, so we wouldn’t be able to advise on what’s could be happening with potential DDOS activity the site may be experiencing there.
My advice would be to reach out to the host to get more information on the site, and I see Cloudflare is also in use, so they may also be worth contacting.
Whilst the site is not hosted with WordPress.com, it’s possible to move the site over to WordPress.com, as monitoring suspicious activity is one of the security measures we employ: https://wordpress.com/support/security/
It’s possible to migrate the site over to WordPress using our migration plugin: https://wordpress.org/plugins/wpcom-migration/ and the site would need to be on the business plan.
I hope this helps.
- The topic ‘Please Help!!’ is closed to new replies.