Does piwik have any flood and /or attack control? I’m not talking about protection against ddos attacks or similar, just preventing someone can use the http API to create false calls to piwik tracker.
For instance a hacker may try to create 1,000 page views by calling the action tracking API programmatically, he can even change _id parameter in order to simulate different visitors.