• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue Stop Plesk Brute Force Attacks NOW: Cloudflare + Windows Server Fix

TheHostingHeroes

Basic Pleskian
Server operating system version
Windows Server 2022
Plesk version and microupdate number
91.232.125.207
Are you noticing your Plesk panel lagging or seeing endless failed login attempts in the Log Browser?
Since mid-March 2025, brute force attacks have been hammering Plesk installations on Windows Server, and we’ve cracked the code to stop them dead.

Our team at The Hosting Heroes put together a proven fix using Cloudflare to shield your login and a PowerShell script to lock it down server-side.
It’s worked wonders for us and our clients—attacks stopped instantly, and Task Manager even recovered from the chaos. No more slowdowns, no more headaches.

Check out the full step-by-step guide here: How to Protect Your Plesk Login from Brute Force Attacks on Windows Server.

It covers everything: spotting the attack, setting up Cloudflare rules, securing your URL, and even fixing a broken Plesk Task Manager caused by attack of login attempts.

If you’ve been hit by this wave or just want to stay ahead, give it a try and let me know how it goes—or if you’ve got other tricks up your sleeve!
 
Back
Top