I would like to discuss the effect the invasion of Ukraine has had on WordPress websites. I have developed a platform (WP-Ensure/WP-Turva) that monitors and maintains WordPress and Multisite installations and since the invasion there has been a clear change in how bots are attacking WP sites. I would like to discuss the incentives behind why hackers usually use bots to attack WP sites including data stealing, bringing the sites down, simply for fun etc, also some real-life stories of what I have seen and how things have changed with attacks coming out of the Russian Federation. I will talk about ways to mitigate the risks already at DNS level through for example Cloudflare, as well as tools at server level and within WP itself that can help protect your site. I would like to talk about common attacks, why they happen and what you can do to prevent them as a web developer or end-user.