If you just installed your first WordPress blog, you will get some if not lots of email notifications from WordPress about new user registration on your blog. That seems good news for newbies, they think that their blogs become popular, and people want to subscribe, but the truth is completely different.
Those new subscribers are spammers who want to send you their offers, and in other cases, they want to hack your site in the near future. So stop letting them do what they want from the beginning, and learn how to disable user registration in WordPress.
The big question that you want to ask is how people subscribe to your blog while you never offer any subscription option. Well, they use your WordPress admin login page to register. There is a link that lets people subscribe to your blog. The good news is that they will just be as subscribers and can’t access, or modify anything. But, as I said, it can be a way to send you hidden codes in any way.
Disable all WordPress user registration
You can easily disable the new user registration from your dashboard. Just click Settings and in General Settings, you can uncheck the registration option:

After clicking the ”save changes” button, your blog will no longer show that subscribe link for spammers. This option is good for regular blogs, but if you have a membership website or blog, then disabling the new user registration option is not the case. In that situation, you need to let your new members subscribe but with extra security and setting options.
Plugins to disable new user registration
You can use plugins such as Stop Spammers or Wordfence security to whitelist IP addresses or even blog a full IP address range. They let you do many advanced options to protect your website from spammers. But you have to spend some time reading their setting page and configuration to ensure the right configuration that protects your website.
If you think that you have something that generates automatic user registration or similar threads. Then, you should scan WordPress plugins and themes for malware, but please remember that you should protect your blog files and details, and never share them online for any reason.
If you need help, for example, never share your error messages if they include details and information that can be used to access your site files and directories.
Please make sure to use the minimum spam protection plugins as possible. Just choose one or two as the maximum to avoid problems, some plugins won’t work together on the same website. As a result, you will risk your website and get the minimum protection instead of the best.
Sometimes the good plugins will lose their features if other plugins work on the same task. A theme issue with many similar plugin functionalities will make your website slower than before, and even, it can stop the server work properly with a high level of an HTTP request for the same task.
You need to protect your blog from many sources and not repeating the same thing many times. So, use the two above plugins and your website or blog will be in safety.