iThemes messing with cpanel Hotlink Protection

Finally found the culprit and it was this plugin messing with cPanel’s Hotlink Protection!

I normally don’t have a problem with iThemes messing htaccess, but whenever I update something in iTheme’s settings (Banned Users most likely) or sometimes randomly for no reason even, it seems to enable Hotlink Protection and then overwrite all the URLS under “URLs to allow access” while excluding my own domain and subdomain. It also disables “Allow direct requests (for example, when you enter the URL of an image in a browser).“.

It overwrites the URLS allowed to jetpack.wordpress.com/jetpack-comment (through WordPress and system-tweaks/config-generators.php), and if “Enable HackRepair.com’s ban list feature” is active: kambasoft.com, semrush.com, and savetubevideo.com.

This messes with images loading in my website, mainly if they’re through gallery and lightbox plugins.

Any idea how to add allowed URLs or my own domains if iThemes is just gonna overwrite them anyway?