- Rename admincp and modcp folder using a strong password on each, including .htpasswd protection
- Create fake admincp and modcp folders with fake .htpasswd (You have now set a bear trap for your access logs)
- Change the database password to something a 256-bit or higher cipher strength in includes/config.php
Example: YL27hw5xF0WxI71rWG5PcMYJslsYQp7cfMvDCi5ycRM - Change password on all admin user accts,
