In the Awstats for my website, I’ve noticed a huge number of visitors
from countries such as Ukraine, Russian Federation, Czech Republic,
China, Philippines, etc. They appear (to my limited understanding)
to be mostly spiders and robots that visit for less than 30 seconds.
Should I be concerned about this from a security standpoint? If so,
is there something I can do? BTW, I do no business outside of the US.
I had a similar experience last year that coincided with a spike in spam, and to a lesser extent attempts to hack my CMS by looking/guessing for the default login page which I always move (a good practice for anyone using a CMS).
Beyond that annoyance I didn’t experience any serious problems.
In my experience, CloudFlare lets you withstand a ping flood or other DOS attack without even breaking a sweat. It’s sort of my favorite thing – someone asks for the same asset tens of thousands of times a second, you just give it to them. They fall over instead of you.