1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Absolutely Bizarre Forum Spam

Discussion in 'BlackHat Lounge' started by RedPhoenix, Feb 26, 2015.

  1. RedPhoenix

    RedPhoenix Newbie

    Joined:
    Sep 5, 2009
    Messages:
    4
    Likes Received:
    14
     
    • Thanks Thanks x 1
  2. OnFlySEO

    OnFlySEO Registered Member

    Joined:
    Jan 23, 2015
    Messages:
    69
    Likes Received:
    52
    Your second post in 6 years?
     
  3. RedPhoenix

    RedPhoenix Newbie

    Joined:
    Sep 5, 2009
    Messages:
    4
    Likes Received:
    14
    I am like Bigfoot, but with smaller feet and more hair.
     
    • Thanks Thanks x 3
  4. jamie3000

    jamie3000 Supreme Member

    Joined:
    Jun 30, 2014
    Messages:
    1,414
    Likes Received:
    655
    Occupation:
    Finance coder looking for semi-retirement
    Location:
    uk
    Might be testing your input sanitising to see if they can do any xss
     
    • Thanks Thanks x 1
  5. redarrow

    redarrow Elite Member

    Joined:
    Apr 1, 2013
    Messages:
    6,013
    Likes Received:
    1,455
    You need to get spam protection.

    capcha
     
  6. RedPhoenix

    RedPhoenix Newbie

    Joined:
    Sep 5, 2009
    Messages:
    4
    Likes Received:
    14
    Have it. Google recaptcha.
    Also using secret question.
    Interesting. I was not aware of this.
    I have never done anything to sanitize outputs or inputs. Whatever VBull does by default is the only protection I have.
    This part was especially telling
    Really no idea about any of this. Apparently my forums are Swiss cheese, security wise.
     
  7. qrazy

    qrazy Senior Member

    Joined:
    Mar 19, 2012
    Messages:
    1,115
    Likes Received:
    1,725
    Location:
    Banana Republic
    May be they're trying to create links in their profiles pointing to their site?
     
  8. Star Anise

    Star Anise Registered Member

    Joined:
    Feb 26, 2015
    Messages:
    88
    Likes Received:
    26
    I get these types of spam on forum sometimes too. I don't know what they are trying to accomplish either but maybe their bots fail on certain forum software. Maybe your forum doesn't have a WYSIWYG editor so that's why the link doesn't show up.

    A good way to clean it up is to ban the IP address and check what email they use. Usually they use some kind of temporary email service, so you can just ban it with a wildcard.
     
  9. ttrox

    ttrox Regular Member

    Joined:
    Jun 28, 2013
    Messages:
    217
    Likes Received:
    76
    Which version of google recaptcha are you using? V2 or V3, the new one?

    edit: nevermind, just read you had a secret question. If it's custom made, you might be getting targetted. Is there a lot of movement on your forum?
     
    Last edited: Feb 27, 2015
  10. TeKn1qu3z

    TeKn1qu3z Jr. VIP Jr. VIP Premium Member

    Joined:
    Jul 26, 2012
    Messages:
    920
    Likes Received:
    236
    Occupation:
    Amazon FBA Guru
    Location:
    The Office
    Keep the registrations in moderation, so all those who signups in new will be in control. There are more methods to stop these spam bots.