Title: Site attack Last modified: August 15, 2024 --- # Site attack * Resolved [dev11webby](https://wordpress.org/support/users/dev11webby/) * (@dev11webby) * [1 year, 10 months ago](https://wordpress.org/support/topic/site-attack-2/) * Thank I have some serious issues on my site, I got 100 orders with the same email with the same IP and failed order How do I stop this type of spammer on my site?I already installed theWordfencee security plugin and blocked IP and user ID.I already enable Recaptcha on my checkout page.Is there any way to stop it?Wordfence and captcha are not able to stop it. * > [View post on imgur.com](https://imgur.com/HcLs3ix) - This topic was modified 1 year, 10 months ago by [dev11webby](https://wordpress.org/support/users/dev11webby/). * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fsite-attack-2%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 3 replies - 1 through 3 (of 3 total) * [ckadenge (woo-hc)](https://wordpress.org/support/users/ckadenge/) * (@ckadenge) * [1 year, 10 months ago](https://wordpress.org/support/topic/site-attack-2/#post-17954869) * Hi [@dev11webby](https://wordpress.org/support/users/dev11webby/), * Thank you for reaching out. * I understand your concern about the spam orders you’re receiving on your site. * While Wordfence and Recaptcha are good measures, they may not always be enough to stop sophisticated spammers. In this case, I would recommend the [WooCommerce Anti-Fraud plugin](https://woocommerce.com/products/woocommerce-anti-fraud/). * This plugin is specifically designed to help detect fraudulent transactions on your WooCommerce store. It can also automatically blacklist certain IP addresses, emails, or even specific countries if you notice a pattern in the spam orders. * [Stef](https://wordpress.org/support/users/serafinnyc/) * (@serafinnyc) * [1 year, 10 months ago](https://wordpress.org/support/topic/site-attack-2/#post-17955204) * Hello [@dev11webby](https://wordpress.org/support/users/dev11webby/), just to add to what [@ckadenge](https://wordpress.org/support/users/ckadenge/) mentioned I see that your recaptcha is in the incorrect location for one. It needs to be located just before the place order button or it won’t work properly. I was able to bypass it easily. * Usually the terms checkbox is enough, but it appears you have a bot that knows how to check that box. * Your checkout page does look to be overly customized so something in there is allowing the bot to bypass these features. * Thread Starter [dev11webby](https://wordpress.org/support/users/dev11webby/) * (@dev11webby) * [1 year, 9 months ago](https://wordpress.org/support/topic/site-attack-2/#post-17956270) * Thanks for suggestion. I follow this things Viewing 3 replies - 1 through 3 (of 3 total) The topic ‘Site attack’ is closed to new replies. * ![](https://ps.w.org/woocommerce/assets/icon.svg?rev=3234504) * [WooCommerce](https://wordpress.org/plugins/woocommerce/) * [Frequently Asked Questions](https://wordpress.org/plugins/woocommerce/#faq) * [Support Threads](https://wordpress.org/support/plugin/woocommerce/) * [Active Topics](https://wordpress.org/support/plugin/woocommerce/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/woocommerce/unresolved/) * [Reviews](https://wordpress.org/support/plugin/woocommerce/reviews/) ## Tags * [attack](https://wordpress.org/support/topic-tag/attack/) * 3 replies * 3 participants * Last reply from: [dev11webby](https://wordpress.org/support/users/dev11webby/) * Last activity: [1 year, 9 months ago](https://wordpress.org/support/topic/site-attack-2/#post-17956270) * Status: resolved