← Back to Security & SSL

Monitoring Failed Login Attempts

πŸ“‚ Security & SSL πŸ•’ 3 min read πŸ“… Updated April 2026

Monitoring failed login attempts helps you detect brute-force attacks against your cPanel, SSH, or WordPress admin panel before they succeed.

cPanel Login Attempts

cPanel and WHM record failed login attempts. Imunify360 automatically tracks and blocks IPs after multiple failed attempts. View blocked IPs in Security > Imunify360 > Incidents.

WordPress Login Attempts

Install Wordfence or Limit Login Attempts Reloaded. These plugins block IPs after a configurable number of failed login attempts. You can also move the login URL from /wp-admin to a custom URL β€” see the guide on changing the WordPress admin URL.

SSH Login Attempts

Check failed SSH logins via terminal:

# On Linux servers\ngrep "Failed password" /var/log/auth.log | tail -20

Imunify360 automatically bans IPs with repeated SSH failures. Switching to key-based authentication eliminates the brute-force risk entirely.

Was this article helpful?

Related Articles

Security & SSL
Setting Up SSH Key Authentication
Security & SSL
Setting Up Two-Factor Authentication (2FA)
Security & SSL
How to Set Up IP Blocking
On This Page