is available for Magento® 2
Prevent your Magento® 2 website from brute force attacks with Watchlog
Follow the traffic on your Magento® 2 admin
- Check the daily and monthly login attempts in graphs
- Get a detailed and a summarized table of the login attempts
- Schedule a periodic report on the statistics by email
Keep track of each connection attempt
- Define a history lifetime in days
Possible large scale brute force attack on Magento®!
Thousands of Magento® websites are certainely concerned by this very large brute force attack which aim is clearly to force the access to Magento® backoffices.
The principle of that kind of attack is simple: robots try to log into your backoffice using multiple login/password combinations until they find the correct credentials.
Once these credentials are identified, your Magento® website becomes an easy prey for hacking: exploitation of your database, diversion of your payments, hacking, unfair competition...
How to check if my website is subject to these attacks?
You can install our free Watchlog extension for Magento® 2 to detect the intrusions into your Magento® 2 backoffice in order to track any login attempt.
What to do?
You can easily bypass these kinds of attacks!
Several solutions exist to make your Magento® 2 backoffice invisible to robots that try to login:
- Modify the name of your Magento® 2 backoffice
- Activate captcha for your Magento® 2 backoffice
- Restrict the access to your Magento® 2 backoffice by IP with htaccess
- OR use Watchlog PRO that will act as a firewall and so replace all the above steps.
While the free extension Watchlog lists the IPs that try to access your Magento® 2 backoffice, Watchlog PRO will also help you to stop these intrusion attempts.
Watchlog PRO is a more complete version that offers more options than Watchlog.
Connection attempts charts
Check the daily and monthly login attempts charts.
Connection attempts tables
Get detailed and summarized tables of the login attempts data.
Connection attempts history
Define the history lifetime and receive periodical reports.
Blacklist and Whitelist
Create a whitelist and a blacklist of IPs, allow access to whitelisted IPs only.
Automatically or Manually block IPs
Block IPs after X login attempts, block the blacklisted IPs for X minutes.
HOW TO USE THE WATCHLOG EXTENSION FOR MAGENTO 2
Watchlog is a free and easy to use extension for Magento® 2. You'll be able to see very quickly if your Magento® 2 backoffice is threatened by a brute force attack and if someone or some robots are trying to log into your Magento® 2 admin panel.
HOW TO INSTALL WATCHLOG
To install the Watchlog free extension on your Magento® 2 admin, follow the below steps:
1. Before installing the extension, it's advisable to backup your Magento® 2 installation.
2. Then, you need to refresh caches in System > Tools > Cache Management.
3. Now you can download the zipped extension from your Wyomind account > My downloads.
4. Once you have downloaded it, unzip the folder content.
5. Copy the app folder and paste it into the Magento® 2 root directory. You can merge the directories.
6. Open a console and run the following command on the Magento® 2 root directory:
bin/magento setup:upgradeOnce your installation is complete, don't forget to clear the cache and log in again.
STEP 1: Configure your Watchlog extension
You can start with configuring your extension in a general way in Stores > System > Config > Wyomind > WatchLog.
In the Connection attempts history tab, you'll be able to configure a certain number of parameters.
History lifetime in days : You have the possibility to define a history lifetime in days in order to purge the history. For example, you'll be able to define the history lifetime on 30 days in order to remove automatically all the login attempts that are older than 30 days.
Send a periodical report : You can choose to receive periodical reports. If you have decided to set that option to YES , then you'll have to define:
- Period to report in days: define how many days you want to include in your report.
- Sender email: define the email address of the sender.
- Sender name: add the name of the sender.
- Send the reports to: add the email addresses of the recipients separated by a comma.
- Report title: define a title for the report.
- Report schedule: define a schedule to automatically send the reports.
You'll then receive a report as below.
STEP 2: Check the login attempts to your Magento® 2 backoffice
If you go to Stores > Watchlog > Connection attempts, you'll have a global overview of the login attempts executed from your Magento® 2 admin panel log in page.
Statistics on the login attempts will be displayed in graphs and tables.
Login attempts charts
You should get two graphs that recap the login attempts statistics on two different periods of time in order to give you the best possible view. The first chart will display the data on the last 30 days whereas the second one will sum up the login attempts on the last 24 hours.
On both graphs, you'll have several curves:
- Success : represents the login attempts that succeeded
- Failed: represents the login attempts that failed
Login attempts grids
You should find the summary of the last days within two different views:
- Detailed view
- Summarized view
In the Detailed View, you'll find a detailed table of the login attempts. Among that grid, you'll have several data:
- IP: the IP that tried to log into your Magento® 2 backoffice.
- Date: the date when the IP tried to log in.
- Login: the login used.
- Password: the password used to log in.
- Message: the message displayed when trying to log in.
- Url: the url from which the IP tried to log in.
- Status: the status of the IP: Success or Failed.
By clicking on Switch to the summarized view you should get a table with the basic information. You'll find:
- IP: the IPs that tried to log in
- Last Attempts: the date of the last attempt
- Attempts: the number of login attempts
- Failed: the number of failed login attempts
- Succeeded: the number of login attempts that succeeded
By default, both tables display data of the last 30 days. You can edit that from Stores > System > Config > Wyomind > WatchLog, in the History lifetime in days field.
At any time you can switch between both views.