diff --git a/app/Http/Controllers/Passport/AuthController.php b/app/Http/Controllers/Passport/AuthController.php
index 277f1f92..fc7e6de5 100644
--- a/app/Http/Controllers/Passport/AuthController.php
+++ b/app/Http/Controllers/Passport/AuthController.php
@@ -190,6 +190,12 @@ class AuthController extends Controller
         $email = $request->input('email');
         $password = $request->input('password');
 
+        $passwordErrorCount = (int)Cache::get('PASSWORD_ERROR_LIMIT') || 0;
+
+        if ($passwordErrorCount >= 5) {
+            abort(500, __('Incorrect email or password'));
+        }
+
         $user = User::where('email', $email)->first();
         if (!$user) {
             abort(500, __('Incorrect email or password'));
@@ -200,6 +206,12 @@ class AuthController extends Controller
             $password,
             $user->password)
         ) {
+            $passwordErrorCount = Cache::get('PASSWORD_ERROR_LIMIT') || 0;
+            Cache::put(
+                CacheKey::get('PASSWORD_ERROR_LIMIT', $email),
+                (int)$passwordErrorCount + 1,
+                30 * 60
+            );
             abort(500, __('Incorrect email or password'));
         }
 
diff --git a/app/Utils/CacheKey.php b/app/Utils/CacheKey.php
index de7cb593..98f33ca3 100644
--- a/app/Utils/CacheKey.php
+++ b/app/Utils/CacheKey.php
@@ -20,7 +20,8 @@ class CacheKey
         'LAST_SEND_EMAIL_REMIND_TRAFFIC' => '最后发送流量邮件提醒',
         'SCHEDULE_LAST_CHECK_AT' => '计划任务最后检查时间',
         'REGISTER_IP_RATE_LIMIT' => '注册频率限制',
-        'LAST_SEND_LOGIN_WITH_MAIL_LINK_TIMESTAMP' => '最后一次发送登入链接时间'
+        'LAST_SEND_LOGIN_WITH_MAIL_LINK_TIMESTAMP' => '最后一次发送登入链接时间',
+        'PASSWORD_ERROR_LIMIT' => '密码错误次数限制'
     ];
 
     public static function get(string $key, $uniqueValue)
diff --git a/resources/lang/en-US.json b/resources/lang/en-US.json
index 3de90f08..947b11a9 100644
--- a/resources/lang/en-US.json
+++ b/resources/lang/en-US.json
@@ -93,5 +93,6 @@
     "This subscription reset package does not apply to your subscription": "This subscription reset package does not apply to your subscription",
     "Login to :name": "Login to :name",
     "Sending frequently, please try again later": "Sending frequently, please try again later",
-    "Current product is sold out": "Current product is sold out"
+    "Current product is sold out": "Current product is sold out",
+    "There are too many password errors, please try again after 30 minutes.": "There are too many password errors, please try again after 30 minutes."
 }
diff --git a/resources/lang/zh-CN.json b/resources/lang/zh-CN.json
index ac75657a..b36580fa 100644
--- a/resources/lang/zh-CN.json
+++ b/resources/lang/zh-CN.json
@@ -93,5 +93,6 @@
     "This subscription reset package does not apply to your subscription": "该订阅重置包不适用于你的订阅",
     "Login to :name": "登入到 :name",
     "Sending frequently, please try again later": "发送频繁，请稍后再试",
-    "Current product is sold out": "当前商品已售罄"
+    "Current product is sold out": "当前商品已售罄",
+    "There are too many password errors, please try again after 30 minutes.": "密码错误次数过多，请 30 分钟后再试"
 }