Cybersecurity is the one critical area that worries every other Internet user to corporate with web portal administrators. Since WordPress powers more than 30% websites on the Internet, it often becomes a prime target for hackers and spammers. Many experts suggest that WordPress hosting and security is as important as speeding up your WordPress site.
WordPress website administrators often face spam comments, automatic fake registrations and login attempts as common security threats. CAPTCHA is a potent tool for protecting sites against those spamming done via bots. Until now, this security measure generated a security question that only humans can answer. In many cases, solving CAPTCHA every time for gaining access to resources is very annoying.
Invisible reCAPTCHA is activated only in cases where Google suspects that the visitor is not a human.
In this article, I will discuss how you can integrate Google invisible reCAPTCHA plugin in WordPress to control spam, abuse of forms, and improve the security of the website.
This solution is ideal for all WordPress websites, including simple WordPress sites, WooCommerce stores, Community or a network of WordPress Multisite.
- Login form protection annihilates Brute Force attacks
- Registration form protection
- Comments form protection
- Forgot Password form protection
- Product Review form protection
- Reset Password form protection
- Contact Form 7 support
- Gravity Forms support
- Ultra Community Invisible reCaptcha
- BuddyPress Invisible reCaptcha
- Hooks to integrate Invisible reCaptcha with any plugin or custom form
Below are few easy steps to add Google Invisible reCAPTCHA Plugin on WordPress website.
- Install Google Invisible reCAPTCHA Plugin
- Authentication – Connect WordPress Website with Google Account
- Google reCAPTCHA Settings
- reCAPTCHA in Action
Step 1: Install Google Invisible reCAPTCHA Plugin
To add this useful plugin to your site, log in to your WordPress Admin Dashboard, navigate to Plugins > Add New, search for Invisible reCAPTCHA for WordPress and install the plugin. Check out the following screenshot for reference:
Once installed and activated, you will see a new label Invisible reCAPTCHA under the Settings tab. You will find several settings to configure the plugin. Check out the following screenshot for reference:
Step 2: Authentication – Connect WordPress Website with Google Account
As invisible reCAPTCHA is a Google product, therefore, it first needs to be connected to your Google account. First login your Google account, open this link to register the website with your Google account by filling in the required fields. Check out the following screenshot for reference:
Once registered, you will get the Site and Secret keys.
Copy and Paste these keys in the plugin’s settings tab as shown in the screenshot below:
Step 3: Google reCAPTCHA Settings
The best part of this plugin is that it allows adding invisible reCAPTCHA to the most important areas of the website described above. From the left pane of the plugin, navigate to the tab that best describes your site.
Just check the fields that you require. I would suggest that you mark them all, as all of these are sensitive areas that are often subjected to abuse and attacks.
WordPress Protection Settings
WooCommerce Protection Settings
Ultra Community Protection Settings
BuddyPress Protection Settings
Custom Forms Protection Settings
Step 4: reCAPTCHA in Action
After configuring the settings correctly, you should be able to see reCAPTCHA only at the selected pages and locations. In the above example, I set the options to display reCAPTCHA on login, registration, password reset and comment forms.
As you can see, I was not presented with the Invisible reCAPTCHA challenge because it decided that I am a human!
This is why only the logo appears at the right bottom of the page. This indicates that Google Invisible reCAPTCHA protects this page.
Google Invisible reCAPTCHA plugin allows you to reposition the badge. Not only this, but it also allows to add custom CSS code to the badge.
To remove the badge completely, you can use below-mentioned code at Badge Custom CSS label.
And click on Save Changes.
P.S. I would not suggest hiding the badge, since it may violate Google reCAPTCHA’s policies, as the badge links to Google’s terms and privacy documents.
In the End
I introduced Google invisible reCAPTCHA in WordPress for controlling spam and form abuse. To tighten the security of your website, here are some top rated WordPress plugins. If you have any question about setting up the plugin, feel free to leave a comment!
Mustaasam is the WordPress Community Manager at Cloudways - A Managed WordPress Hosting Platform, where he actively works and loves sharing his knowledge with the WordPress Community. When he is not working, you can find him playing squash with his friends, or defending in Football, and listening to music. You can email him at firstname.lastname@example.org
Be the first to check out WordPress 5.0
Use our Staging feature before upgrading your website to WordPress 5.0.