WordPress.com launches new free Defensive Mode to combat DDoS attacks with Proof-of-Work

WordPress has introduced a new "Defensive Mode" to enhance security against DDoS attacks by employing proof-of-work challenges. This feature is designed to combat the threats posed by spam bots and denial-of-service attacks, which can significantly disrupt website functionality. This security measure is offered at no additional cost, unlike other hosts that may charge for similar protections.

The defensive mode presents visitors with a JavaScript-based puzzle to solve, taking only a few seconds for a standard CPU, thereby deterring botnets that struggle with these challenges. This feature operates independently of WordPress.com’s global edge cache, providing users with flexibility in its application.

All sites hosted on WordPress.com, regardless of whether they are on Free, Personal, or Premium plans, automatically receive protection through defensive mode. Users on Business and Commerce plans can manually activate this feature via the Hosting Dashboard. Additionally, WordPress.com staff can enable defensive mode proactively for any site under attack, irrespective of the hosting plan.