A New Bot Hitting Sites And ByPassing CF, Captcha and Honeypots

What is the name of the domain?

prefer not to share

What is the issue you’re encountering

Hundreds of failed orders in WooCommerce website

What steps have you taken to resolve the issue?

I’ve tried rate limiting, both bot configurations here. Honeypot, Captcha, Cookie and session monitoring. Tried blocking Origin, but that was no good. This bot is really sophisticated. Can’t run rate limiting because it only works in seconds and the bot is coming in random minutes. I’m running out of ideas. The client is on a free CF account. So he’s only allowed one of this or that. Do the pro plans offer better ability to configure other strategies? Any ideas here would be appreciated.

Hi !

I’ve tried rate limiting

You may want to reduce the request limit and retry.
Kindly review this document for further information: Overview | Cloudflare Web Application Firewall

Do the pro plans offer better ability to configure other strategies?

The higher the plan, advance security features are available.

Thank you !

What do you mean “reduce the rate” I only have seconds available to me in a free account and this bot was coming in at random minutes, not seconds.

I’ve written a script that blocked it though.

This topic was automatically closed after 15 days. New replies are no longer allowed.