Our Website was hacked about 2 weeks ago. We have placed the below security measures in place
1. Whitelist IPs can only access the server
2. 4 question Authenticate
3. Password with 128 Bit Encryption
4. Shell Fork Bomb Protection
5. SMTP restriction
6. Brute Force Protection
The person is still trying to access our server and is failing every-time. We are getting a notification every-time there is a failed attempt. We would like to catch this person & need some help in doing so.