Forums

More spam recently ChronoForms

S
schumi1971 posted Jan 20, 2017 at 13:12
Some of my clients that I have used ChronoForms for creating forms, has recently experienced an increase in spam.
I have protected forms with reCAPTCHA, and it works when I run tests.
Yet it pops up something that looks like Russian spam.

It may be a weakness in the latest version of ChronoForms5?
Proposed solution?

This is private content
G
GreyHead posted Jan 20, 2017 at 13:58
Hi schumi1971,

What exactly do you mean by Yet it pops up something that looks like Russian spam. ?

You might want to upgrade to the new version of Google Captcha and see if that helps.

Bob
S
schumi1971 posted Jan 20, 2017 at 14:12
Hi GreyHead
Sorry, I ment that the spam e-mail looks like it is of Russian origin, because of the language🙂
Thanks for suggestion, I didin`t know that "Google NoCaptcha" was the new version, but I will try this.
G
GreyHead posted Jan 20, 2017 at 15:22
Hi schumi1971,

Try the new version - if you have specific site keys from Google then they should work OK. Try it out with a little test form first to make sure that everything works. Then in your existing form replace the Load and Check No Captcha actions with the new actions.

Bob
B
benvoth posted Jan 24, 2017 at 16:28
I want to push this topic up as we are also receiving a big increase in spam on four sites we are using ChronoForms on. We were originally using the standard captcha plugin and spam was still coming through. So I rebuilt the forms to use honeypot and spam still came through. And then I replaced that with reCaptcha and spam still comes through. This looks as though they aren't breaking through captcha but rather breaking through the form.

Is there anything in the core that needs to be updated to prevent this? I may need to move to another form component now because of all of this spam coming through.
Max_admin posted Jan 24, 2017 at 17:01
Hi benvoth,

Are you sure the reCaptcha is setup correctly ? please try the "noCaptcha", and post a screenshot of your form setup section, here is the tutorial on how to add it to your forms correctly:
http://www.chronoengine.com/faqs/70-cfv5/5263-how-can-i-use-google-nocaptcha.html

Best regards,
Max
Max
ChronoForms developer...
B
benvoth posted Jan 24, 2017 at 17:34
Thank you for the quick reply.

I will review recaptcah and try nocaptcha and follow up with my results.

But I will say:

- we have been using the standard captcah (not recaptcah) for years with no issues and this just started so that's why we've tried alternate security measures

- when we setup recaptcah, i tested it out on the front end with wrong (or blank) entry and it fails

- and we tried the honeypot method as well but spam was still getting through
Max_admin posted Feb 17, 2017 at 12:16
Hi benvoth,

Maybe the spammers are focusing on your website now, Google uses advanced techniques to detect spammers, if you can enable the google nocaptcha then that would be the most effective solution.

If not then an event switcher with some php code to catch their data pattern can stop them too.

Best regards,
Max
Max
ChronoForms developer...
This topic is locked and no more replies can be posted.

 2Checkout.com

2CheckOut.com Inc. (Ohio, USA) is an authorized retailer for
goods and services provided by ChronoEngine.com