We have store locator / maps feature in our hybris webshop and we have faced and are facing a bot attack with over 4 million requests over the weekend (Feb 6 to Feb 😎 using the storelocator feature which in turn calls the google api. This feature is exposed for non logged in user.
- As a mitigation plan, we reduced the daily limit to 200 requests but that gets used up as bot attacks still happen.
- We tried to use the POST call instead of GET, but that doesn't help.
How can we stop such attacks in the future? The store location feature cannot be used as a result of bot attack ,we set up the daily limit to 200 to avoid charges on credit card caused due to google api requests from bot. The daily quota gets used up before start of business hours.
Thank you
Bluesky
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.