Subscription includes
Support
Running a WooCommerce store means more than taking orders. You also need to control where customers can buy from, protect digital products, reduce suspicious traffic, secure login access, and keep your site files from being exposed.
Security for WooCommerce helps merchants protect key areas of their store with location controls, IP blocking, VPN and proxy checks, malware scanning, secure downloads, two-factor authentication, passcode protection, and WordPress hardening tools.
Security for WooCommerce gives merchants practical tools for real store risks, including unwanted overseas traffic, restricted product availability, exposed downloadable files, suspicious IP addresses, and weak login protection.
Security for WooCommerce is the right fit if you want to protect store access, control regional availability, block unwanted visitors, secure downloads, and harden your WordPress site.
If your main issue is card testing, fake orders, payment fraud, velocity attacks, or suspicious checkout behavior, Anti-Fraud for WooCommerce by OPMC may be the better fit.
| Need | Security for WooCommerce | Anti-Fraud for WooCommerce |
|---|---|---|
| Block VPNs and proxies | Yes | Yes |
| Restrict visitors by country | Yes | Yes |
| Block or allow IP addresses | Yes | Yes |
| Restrict products or categories by location | Yes | No |
| Protect downloadable files | Yes | No |
| Scan for malware | Yes | No |
| Add two-factor authentication | Yes | No |
| Harden WordPress security settings | Yes | No |
| Fraud scoring and order review | No | Yes |
| Card testing and velocity protection | No | Yes |
| Suspicious order alerts | No | Yes |
Prevent unwanted visitors from reaching areas of your WooCommerce store based on country, IP address, visitor behavior, or your own access rules.
Security for WooCommerce helps you reduce unwanted traffic, limit access from regions you do not serve, and protect important parts of the buying journey.
Block visitors from selected countries from accessing your site, cart, checkout, products, or categories.
This helps merchants who only sell in specific regions, need to follow regional licensing rules, or want to reduce unwanted traffic from locations they do not serve.
Prevent visitors from blocked countries from reaching the cart and checkout pages.
This helps reduce unwanted orders and checkout attempts from locations where you do not sell.
Control which products are available to visitors from restricted locations.
Use product-level restrictions when certain items can only be viewed or sold in approved regions.
Apply country-based restrictions to entire WooCommerce product categories with a single setting.
This helps stores with regional product ranges, regulated goods, licensed products, wholesale-only categories, or location-specific catalogs.
Restrict access during specific timeframes for visitors from blocked countries.
Use time-based restrictions when you need more control over when visitors can access your store or protected areas.
Fraudsters and unwanted visitors often hide behind VPNs, proxies, or changing IP addresses. Security for WooCommerce helps you identify and restrict this traffic before it reaches key areas of your store.
Security for WooCommerce uses visitor IP and location checks to help identify traffic coming through VPNs and proxies.
This gives merchants more visibility and control when visitors may be masking their true location.
Allow trusted users, team members, agencies, offices, or partners to access your store from approved IP addresses.
This helps protect sensitive areas while still allowing access for known users.
Block known suspicious IP addresses from accessing your store.
Use IP blacklisting to respond quickly to repeated unwanted traffic, suspicious access attempts, or visitors who should not be allowed through.
Digital products need stronger protection than a standard public file URL. Security for WooCommerce helps reduce direct access to protected files and gives store owners more control over who can access downloadable content.
Restrict access to downloadable files based on IP access rules.
This helps stores selling digital products, licensed documents, gated files, training materials, PDFs, software downloads, or private resources.
Help stop visitors from accessing protected files directly through a public URL.
This adds another layer of protection for media files and digital assets that should only be available through approved access paths.
Stop protected files from being exposed through search engine indexing.
This helps reduce the risk of private or paid content appearing in search results.
Security for WooCommerce includes practical hardening tools that help reduce common exposure points across your WordPress site.
Run malware scans to help identify suspicious files and known threats.
Use malware scanning to check your site files and act faster if something looks wrong.
Enable scheduled scans so your store can be checked automatically.
This helps make security monitoring part of your regular store maintenance routine.
Apply safer access rules for sensitive WordPress files, including files that should not be openly accessible.
This helps reduce exposure of important configuration and server files.
Stop visitors from browsing directories that should not be publicly viewable.
Directory listing protection helps prevent people from seeing file and folder structures that could expose unnecessary site information.
Hide the WordPress version number from public output.
This helps reduce the amount of technical information available to attackers looking for sites running specific WordPress versions.
Add extra protection around user access and site entry points.
Enable two-factor authentication for stronger login protection.
This helps reduce the risk of unauthorized access if a password is guessed, reused, or compromised.
Add passcode protection when you want an extra layer of access control.
This helps private stores, restricted areas, internal catalogs, B2B stores, or sites that should only be accessed by approved visitors.
Block visitors from countries you do not serve and restrict access to checkout, products, or categories.
Control access to downloadable files and reduce direct access to paid or private content.
Use country restrictions, VPN and proxy checks, and IP blocking to reduce unwanted access attempts.
Restrict specific products or categories when items can only be sold in approved regions.
Use IP rules, passcode protection, and access restrictions to keep private catalogs away from public visitors.
Use malware scanning, directory protection, file access controls, two-factor authentication, and WordPress hardening tools from one plugin.
Security for WooCommerce is a strong fit for:
Security for WooCommerce gives merchants a practical way to protect key areas of their store without adding several separate plugins.
OPMC has been building and supporting WooCommerce extensions since 2014. Our plugins are designed for real WooCommerce stores and maintained by a team experienced in ecommerce workflows, integrations, automation, and store protection.
Security for WooCommerce is actively maintained, supported, and built to help merchants protect their stores with practical controls that are easy to manage.
Protect your WooCommerce store with location controls, IP blocking, VPN and proxy checks, secure downloads, malware scanning, two-factor authentication, and WordPress hardening tools.
Add Security for WooCommerce to your store today.
Security for WooCommerce lets you control who can access your store using country restrictions, IP allowlists and blocklists, VPN and proxy detection, passcode protection, and time-based access rules. Whether you want to block high-risk regions, restrict certain products, or protect private areas of your website, you have complete control over who can view and interact with your store.
Yes. Many malicious users attempt to hide their location by connecting through VPNs or proxy networks. Security for WooCommerce can identify many of these anonymous connections, allowing you to block or restrict access before visitors browse your site or attempt to make a purchase.
Keep in mind that some legitimate customers also use VPNs for privacy or may appear to be connecting from another country while traveling. For this reason, we recommend configuring your security settings carefully and using features like IP allowlists or country-specific rules to balance security with a positive customer experience.
Absolutely. If you sell software, digital downloads, eBooks, templates, or other downloadable products, Security for WooCommerce helps prevent unauthorized access to your download files. This provides an additional layer of protection for your digital assets beyond WooCommerce's standard download controls.
Yes. In addition to WooCommerce-specific security features, the plugin includes WordPress hardening tools such as malware scanning, directory protection, hiding your WordPress version, passcode protection for sensitive areas, and optional two-factor authentication to help reduce common security risks.
Security for WooCommerce is designed to work efficiently alongside WooCommerce and WordPress. Most stores experience little to no noticeable impact on performance while benefiting from additional layers of protection. As with any security solution, performance depends on your hosting environment and the features you enable.
No—unless you configure it to. You decide how strict your security rules should be. You can create IP allowlists, exclude trusted users, apply restrictions only to specific products or countries, and adjust settings as your business grows. This flexibility helps protect your store while minimizing disruption for genuine customers.
No. While Security for WooCommerce helps protect your website by restricting access, blocking VPNs and proxies, scanning for malware, and strengthening WordPress security, it is not designed to detect or stop card testing attacks or payment fraud.
For protection against card testing, stolen credit cards, fraudulent orders, and other payment-related threats, we recommend OPMC Anti-Fraud for WooCommerce. The two plugins complement each other and can be used together to provide comprehensive protection for both your website and your checkout process.
A firewall helps protect your website from many common attacks, but it doesn't provide WooCommerce-specific controls like country restrictions, product-level access rules, secure download protection, or visitor restrictions based on location, VPN usage, or IP address.
Security for WooCommerce adds an additional layer of protection specifically designed for WooCommerce stores, giving you greater control over who can access your content, products, and store.
Extension information
Countries
Languages
