I have a friend who owns a multiple businesses in a single niche in a major city in the US. Well, he has this on-going problem about non-US traffic coming in his site by the thousands as well as thousands of failed login attempts per day in his sites. I know this is from his competitor as I have been helping him in SEO and I noticed some links were made from web properties owned by his competition and the links had ADULT anchor texts (negative SEO). To make the long story short, his site is constantly having problem due to hacks, errors, script changes and all sorts of these stuff. Right now, the only ones who know the website password is him and his bro in law as compared to before but still these attacks are coming in and some are successful. He has cloudflare already setup. His hosting is GoDaddy. What else do you guys recommend in protecting his site? And he had just achieved top 3 rankings both organic and local packs for hundreds of keywords so we are pretty sure these attacks will keep on coming, if not, even get stronger. Thanks guys!