Yeah, I’ve seen a few of these pop up lately too. Usually it’s not some grand “bot wave” thing, it’s just one of the usual junk scripts finding a weak spot and hammering it until you close it off. If both comments and registrations are getting hit, I’d be checking: – open registration settings – comment spam protection – any form plugin with loose defaults – REST/API stuff if something’s exposing more than it should Half the time people clean the spam but leave the same door wide open, so it just comes right back. If it’s only one site, I’d lean plugin/config issue before blaming random traffic. Also, if anyone’s using the same lazy “just install 5 anti-spam plugins” approach, that usually doesn’t fix much. It just adds more junk to maintain.
ToolDecision
Tools, compared and explained
ToolDecision
Tools, compared and explained