Client Sites are receiving Web Form Spam. Help! 🆘

This should be done for all of our website clients before launch. Here is what we can do if this is different, this FAQ is WordPress specific.

1. Install and Configure reCaptcha v2 or v3 on all website forms.
   1. API Keys are in Google Cloud.
   2. Both [email protected] and [email protected] Google Accounts have access to all of our projects.
   3. Let KV or Dan know if you need an updated Key.
   4. Add to Elementor -> Settings.
   5. If this causes any error (failed or error messages), add the API Key to each form.
2. Install & Configure Wordfence.
   1. Install and configure the free version of Wordfence.
   2. Add to our Wordfence Central account (even though it is free).
   3. Wordfence Central is a centralized dashboard for all Wordfence installations.
   4. Login details for Wordfence Central are in Passpack.
   5. Note: if the client wants advanced protection, we can offer it at $175 per year (optional).
3. Install & Configure IP Location Block.
   1. API Key is in Passpack if needed.
   2. Configure IP Location block to block:
      1. Russia
      2. Pakistan
      3. Czech Republic.
      4. Any other offending countries.
   3. We use IP Location Block as it is free.
   4. Wordfence can be upgraded to the paid version many clients do not want the extra cost.
   5. If Wordfence is updated to a paid version, we will use Country Blocking in Wordfence.
4. Let the client know we have configured a Website Firewall, increased security, added anti-spam to all forms and blocked known bad actor countries.