Hi,
Stop bad bots is one plugin created to block spiders.
The plugin can block more than 2.500 spiders and block them based in their User Agent.
Sorry, but looks like you have another kind of problem.
Cheers,
Bill
StopBadBots developer
Hello,
The key here is to identify the bots that are intensely crawling your website and to block them.
Access the cPanel for your account and check on the RAW access logs for your website. Download the log files then search for the word ‘Bot’.
Below is a useful code block you can insert into .htaccess file for blocking a
lot of the known bad bots and site rippers currently out there:
RewriteCond %{HTTP_USER_AGENT} ^.*(SemrushBot|Ahrefs|Baidu|BlogScope|Butterfly|DCPbot|discoverybot|domain|Ezooms|ImageSearcherFree).*$ [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*(ips-agent|BLEXBot|MegaIndex.ru|linkdex|MJ12|Netcraft|NextGenSearchBot|SISTRIX|Sogou|soso|TweetmemeBot|Unwind|Yandex).*$ [NC]
RewriteRule ^/?.*$ "http://127.0.0.1" [R,L]
Bots that are listed above will all receive a 403 Forbidden error when trying to access your site.
Another way to handle malicious traffic is to enable a CDN for your website.
Hope this information will help.
but somehow people are getting around that and creating spammy groups
I would force all users to reset their passwords, make sure all are logged out (salts) and add some security plugins.
Then, add a post about never walking away from your computer or device without locking it down (or be banned :-).
Sometimes we assume hacks, when, it could well be human interaction (with a device left accessible by humans).
