Forums

More spam recently ChronoForms

schumi1971 20 Jan, 2017
Some of my clients that I have used ChronoForms for creating forms, has recently experienced an increase in spam.
I have protected forms with reCAPTCHA, and it works when I run tests.
Yet it pops up something that looks like Russian spam.

It may be a weakness in the latest version of ChronoForms5?
Proposed solution?

This is private content

GreyHead 20 Jan, 2017
Hi schumi1971,

What exactly do you mean by Yet it pops up something that looks like Russian spam. ?

You might want to upgrade to the new version of Google Captcha and see if that helps.

Bob
schumi1971 20 Jan, 2017
Hi GreyHead
Sorry, I ment that the spam e-mail looks like it is of Russian origin, because of the language🙂
Thanks for suggestion, I didin`t know that "Google NoCaptcha" was the new version, but I will try this.
GreyHead 20 Jan, 2017
Hi schumi1971,

Try the new version - if you have specific site keys from Google then they should work OK. Try it out with a little test form first to make sure that everything works. Then in your existing form replace the Load and Check No Captcha actions with the new actions.

Bob
benvoth 24 Jan, 2017
I want to push this topic up as we are also receiving a big increase in spam on four sites we are using ChronoForms on. We were originally using the standard captcha plugin and spam was still coming through. So I rebuilt the forms to use honeypot and spam still came through. And then I replaced that with reCaptcha and spam still comes through. This looks as though they aren't breaking through captcha but rather breaking through the form.

Is there anything in the core that needs to be updated to prevent this? I may need to move to another form component now because of all of this spam coming through.
Max_admin 24 Jan, 2017
Hi benvoth,

Are you sure the reCaptcha is setup correctly ? please try the "noCaptcha", and post a screenshot of your form setup section, here is the tutorial on how to add it to your forms correctly:
http://www.chronoengine.com/faqs/70-cfv5/5263-how-can-i-use-google-nocaptcha.html

Best regards,
Max
Max, ChronoForms developer
ChronoMyAdmin: Database administration within Joomla, no phpMyAdmin needed.
ChronoMails simplifies Joomla email: newsletters, logging, and custom templates.
benvoth 24 Jan, 2017
Thank you for the quick reply.

I will review recaptcah and try nocaptcha and follow up with my results.

But I will say:

- we have been using the standard captcah (not recaptcah) for years with no issues and this just started so that's why we've tried alternate security measures

- when we setup recaptcah, i tested it out on the front end with wrong (or blank) entry and it fails

- and we tried the honeypot method as well but spam was still getting through
Max_admin 17 Feb, 2017
Hi benvoth,

Maybe the spammers are focusing on your website now, Google uses advanced techniques to detect spammers, if you can enable the google nocaptcha then that would be the most effective solution.

If not then an event switcher with some php code to catch their data pattern can stop them too.

Best regards,
Max
Max, ChronoForms developer
ChronoMyAdmin: Database administration within Joomla, no phpMyAdmin needed.
ChronoMails simplifies Joomla email: newsletters, logging, and custom templates.
This topic is locked and no more replies can be posted.