Over the past few days I have noticed a sharp, unexplained spike in direct traffic on my corporate website. The pattern is the same worldwide—thousands of repeated page views hitting the same endpoints every few minutes—yet no genuine engagement follows. Because I have no firewall, captcha, or other security layer in place, I suspect an automated script or bot is hammering the site and inflating my analytics. I need a security-minded developer to: • Analyse server logs, analytics data, and DNS records to confirm the source, volume, and behaviour of the suspicious requests. • Pinpoint whether the traffic originates from a compromised script inside the site, a third-party resource, or external botnets. • Recommend and implement practical counter-measures such as WAF rules, IP rate-limiting, bot filtering, and traffic-scoring solutions (e.g., Cloudflare, ModSecurity, Fail2Ban or similar). • Patch any discovered vulnerabilities, remove malicious code, and harden CMS/plugins if applicable. • Provide a concise report summarising findings, steps taken, and guidance for ongoing monitoring. Completion is verified once normal traffic patterns resume and the mitigation report is delivered.