Login Analysis

Login analysis allows system administrators to check security information on the current system and accounts.

You can disable login analysis or edit the rules at Security Advisor > Advanced > Customize checklist.

New login activities

Security Advisor analyzes each user's login information including HTTP user-agent, IP address, and geographic location. When a new login activity is detected, Security Advisor will send a notification to the system administrator and the user in question.

Once it is confirmed that a specific login record is abnormal, it is strongly advised to use a stronger password, enable 2-step verification, or even limit allowed IPs to enhance account security.

Password guessing (brute force attacks)

Security Advisor analyzes failed login attempts across different IPs and protocols. When someone tries to log in by trying passwords but fails too many times, Security Advisor will send a notification to the system administrator and the user in question. The system administrator can enhance account security by enabling Auto Block or Account Protection (at Control Panel > Security > Account).

Note:

  • Only when abnormnal login record is from a public IP address, Security Advisor will send a notification to the system administrator and the user in question.
  • After you use a public IP address to log in for the first time, the Security Advisor needs 14 days to collect enough data for accurately analyzing the login activity. After 14 days, login analysis will start running.