Sudden Surge of Spam Registrations

Discussion regarding Joomla! 3.x security issues.

Moderators: Bernard T, mandville, fcoulter, PhilD, General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
webbprop
Joomla! Fledgling
Joomla! Fledgling
Posts: 1
Joined: Fri Mar 11, 2016 9:27 pm

Sudden Surge of Spam Registrations

Postby webbprop » Thu Feb 16, 2017 9:16 pm

Hello,

Our site has had sudden surge of spam registrations since January 3, 2017. An example:

Image

Prior to this, spam registration would happen, but only once or twice a month. Now, we're receiving between 1-3 spam registrations a day. Most spambits have not been able to access our website since we have email activation, but this constant surge of fake registrations are negatively affecting our traffic analytics.

Is there a reason for such a sudden surge of spam registrations? How can we stop it? Is there any way we can protect our site against future spam registrations?

User avatar
sozzled
Joomla! Ace
Joomla! Ace
Posts: 1880
Joined: Sun Jul 05, 2009 3:30 am
Location: Canberra, Australia
Contact:

Re: Sudden Surge of Spam Registrations

Postby sozzled » Thu Feb 16, 2017 10:01 pm

The "reasons" for why there may be an abundance of spam registrations on any website—including websites built with Joomla—are almost as as varied as the number of websites that currently exist on the internet today. In answer to your question, therefore, I do not know why your website is receiving an "sudden" upswing/surge in spam registrations. There are many articles on the internet (and discussions in this forum) that relate to spam registrations (and how to prevent spam in websites).

If you have no reason to allow registrations from Russia (i.e. accounts that use email addresses ending in .ru) you could block access to your site from that country (as well as other countries that have a reputation for registering spam accounts on websites).

I'm sorry but, without further information as to how these accounts may be been created on your website, I can't really offer you many useful solutions or suggestions about how to minimise, reduce or "eliminate" such things.
@sozzled2904 - http://www.kuneze.com/blog
If you think I’m wrong then say “I think you're wrong.” If you say “You’re wrong!”, how do you know?

SPProductions
Joomla! Apprentice
Joomla! Apprentice
Posts: 17
Joined: Thu Apr 01, 2010 11:28 pm

Re: Sudden Surge of Spam Registrations

Postby SPProductions » Fri Feb 17, 2017 3:53 am

We've been seeing a surge in spam registrations as well on several sites on several different servers.
We have disabled registration under User: Options. We still get spam registrations.

I'd say there is a major upswing. I'll let you know if I find a solution.

User avatar
sozzled
Joomla! Ace
Joomla! Ace
Posts: 1880
Joined: Sun Jul 05, 2009 3:30 am
Location: Canberra, Australia
Contact:

Re: Sudden Surge of Spam Registrations

Postby sozzled » Fri Feb 17, 2017 4:25 am

SPProductions wrote:We have disabled registration under User: Options. We still get spam registrations.
Just to be sure that I understand completely what you've written:

1) Your Users » Options screen look like this:
j365_userOptions_disableRegistrations.png


and

2) People, including you, are able to register new accounts with these settings.

Please confirm that my understanding is absolutely correct.
You do not have the required permissions to view the files attached to this post.
@sozzled2904 - http://www.kuneze.com/blog
If you think I’m wrong then say “I think you're wrong.” If you say “You’re wrong!”, how do you know?

User avatar
sozzled
Joomla! Ace
Joomla! Ace
Posts: 1880
Joined: Sun Jul 05, 2009 3:30 am
Location: Canberra, Australia
Contact:

Re: Sudden Surge of Spam Registrations

Postby sozzled » Fri Feb 24, 2017 6:56 pm

SPProductions wrote:We've been seeing a surge in spam registrations as well on several sites on several different servers ... I'd say there is a major upswing. I'll let you know if I find a solution.
I would like to make three observations:

1) I note that there has been no further communication from @SPProductions since I asked a couple of questions in my previous post.

2) It's been over a week since this discussion was active. People could have used this time to contribute their thoughts relating to assertions that there has been "a major upswing" in the number of spam registrations in Joomla websites, generally-speaking.

3) I think people can draw their own conclusions from the lack of follow-up on this topic: I think people are likely to conclude that statements like "[a] sudden surge of spam registrations" are counter-productive and are intended to cast doubt about Joomla as a secure platform upon which to build websites.

That's about all we can say on the matter. 8)
Last edited by sozzled on Fri Feb 24, 2017 7:40 pm, edited 1 time in total.
@sozzled2904 - http://www.kuneze.com/blog
If you think I’m wrong then say “I think you're wrong.” If you say “You’re wrong!”, how do you know?

User avatar
JAVesey
Joomla! Ace
Joomla! Ace
Posts: 1256
Joined: Tue May 14, 2013 1:21 pm
Location: Cardiff, Wales, UK
Contact:

Re: Sudden Surge of Spam Registrations

Postby JAVesey » Fri Feb 24, 2017 7:32 pm

I agree with the above; I've not noticed anything unusual recently.
John V
Cardiff, Wales, UK
Website: http://www.llanmon.org.uk (Joomla 3.6.5)


Return to “Security in Joomla! 3.x”

Who is online

Users browsing this forum: No registered users and 4 guests