• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • (Plesk for Windows):
    MySQL Connector/ODBC 3.51, 5.1, and 5.3 are no longer shipped with Plesk because they have reached end of life. MariaDB Connector/ODBC 64-bit 3.2.4 is now used instead.
  • Our UX team believes in the in the power of direct feedback and would like to invite you to participate in interviews, tests, and surveys.
    To stay in the loop and never miss an opportunity to share your thoughts, please subscribe to our UX research program. If you were previously part of the Plesk UX research program, please re-subscribe to continue receiving our invitations.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Issue Stop Plesk Brute Force Attacks NOW: Cloudflare + Windows Server Fix

TheHostingHeroes

Basic Pleskian
Server operating system version
Windows Server 2022
Plesk version and microupdate number
91.232.125.207
Are you noticing your Plesk panel lagging or seeing endless failed login attempts in the Log Browser?
Since mid-March 2025, brute force attacks have been hammering Plesk installations on Windows Server, and we’ve cracked the code to stop them dead.

Our team at The Hosting Heroes put together a proven fix using Cloudflare to shield your login and a PowerShell script to lock it down server-side.
It’s worked wonders for us and our clients—attacks stopped instantly, and Task Manager even recovered from the chaos. No more slowdowns, no more headaches.

Check out the full step-by-step guide here: How to Protect Your Plesk Login from Brute Force Attacks on Windows Server.

It covers everything: spotting the attack, setting up Cloudflare rules, securing your URL, and even fixing a broken Plesk Task Manager caused by attack of login attempts.

If you’ve been hit by this wave or just want to stay ahead, give it a try and let me know how it goes—or if you’ve got other tricks up your sleeve!
 
Back
Top