hcaptcha is a 3rd party source that had an outage or other interruption today. Thread about it at the xf forum. I don't use any 3rd party stuff for spam stopping and certainly not any annoying captchas.
Since disabling the IP checking part of the Email Check addon that was reassigned back to the original developer, the Registration and Contact Spaminators have become a lot busier on Umbrella Online and are getting a lot of garbage input, often with x2 attempts from the same IP in quick succession.
I'm going to assume this is normal, but thought I'd double check.. Screenshot is of the Contact Spaminator, but the input is much the same. Are these bots trying to bypass Captcha and/or verification strings of some kind with this?
I'd assumed since you mentioned captchas, you might be using it. Then I remembered your log was from the contact spaminator.
Either way, if captchas are enabled and you still collect log entries in spaminator products, it means those bots in the log defeated the captchas and everything else that might be enabled.
A customer's body count log from today. 126,446 stopped since around Christmas. That's one hundred twenty-six thousand, four hundred forty-six. Without even one bot getting through. Six months, very busy site.
Hi! I'm a happy owner of the Registration Spaminator.
I've enabled permissions and I've been running it for a few days.
But the life of me I cannot locate the Registration Spaminator's logging.
Could someone point me to it?
Somehow there was a regression in the code and the removed info was added back. I think this was don by changing dev sites and not removing the info from the files. This update to remove my IP address from the log viewing permissions for the addon. This has been in the addon form the vB days and was there for me to view the logs if people were complaining...
Adding to this - what we've seen over the years is changes in approach in the spamosphere. First it was total human operations. They sign up and then make the posts, and get paid. The automated spam programs got better and also less expensive - and there were more of them - so then we saw a period of almost total automation - bot program registers then posts, and human operators were relatively rare. But the improvement in captchas, Q&A, and etc has it now mostly a hybrid operation: Humans register, then hand off the accounts to the botnet and get paid, then the botnet uses automation to log in and make the spam posts.
One way of stopping this is our Login Spaminator. The bot programs can't log in. This also is effective for "sleeper" spam accounts that registered days, weeks, months and even years ago.
Need as many good arrows in your quiver as you can get, to effectively stop spam today. Including use of spam phrases to keep anything that gets through, off your open boards.