We’re finishing the beta tests for a new security feature. I thought to myself:
“AISQ (the main website now) is pretty popular these days, so let me deactivate all the security settings I made for it in WP Ghost and see how many threats appear. “
I just scared myself.
Boom. In under 24 hours, there have been 57 security threats. (- why did I have to deactivate them?)
I’ve written this part of the article on the 19th January 2026.
I also took the screenshots to show you what has been going on.
Want to see what happened after just a few days?
It’s now the 22nd of January 2026.
That thing was creepy and a really big scare. So I’ve activated many of the security options in WP Ghost.
WP Ghost is part of our ecosystem at AISQ for the Digital Presence engine. Made by the same teams behind Squirrly SEO.
It’s super lucky that I did that: the very next day, there were 424 hacking attempts. You can see on the first blue bar chart that appears on the graph.
To be honest, I expected that to happen. In our work as an agency with Florin Muresan’s Growth Program, we also set security for the clients who join the Growth Program. And we’ve seen this happen on two very big ecommerce stores.
It became vital for us to build the threat detection and prevention feature. Now the good part is of course: everything was prevented after setting up WP Ghost.
And one really good thing: you can verify with both WP Cerber and WP Ghost, to see that WP Ghost really prevents all the security threats.
We show the status: Prevented.
Because we stop the attack from even taking place in the first place.
So whatever they’re trying to do, they won’t be able to reach any of it. We block their ability to attack.
There are many features for hack prevention and we’ll want to keep our status at the #1 hack prevention plugin on WordPress.
I can’t wait to release this new feature to all the paid users of WP Ghost. It will happen in about two weeks.
We’ve been placing the threat detection system on other sites as well, and it’s incredible to see how many attempts there are. We only had 1 website with 5 attempts since the 19th.
All the others had hundreds already.
For most of them it was nice to see that our Brute Force prevented them, or the firewall or the special access rules that remove access from files and different WordPress paths they’re trying to attack.
In case you haven’t seen WP Ghost, there is a really good free version we’ve made for it as well. It offers really good protection.
This is our website for the free version.
