Scammers targeting Photopost Classifieds
We've always had some scammers that target our users from our PP Classifieds, but we're seeing more and more scambots that are using the contact.php to send scam emails to every member with an ad.
Today we had one that goes by the name khotmiller (email@example.com) and they are picking up the item title and using it in the email wording.
I just did a quick Google search of "khotmiller" and found that username registered at 4 different forums and each one had PP Classifieds installed.
It would be nice if we could limit the number of contact emails sent via contact.php to stop people from sending mass emails through it.
Do you have any ideas of workarounds that we could do locally that would thwart these scammers. Can we change the name of contact.php and then easily apply this across our installs to trip up any scambots trying look for contact.php in our classifieds.
Or can you think of something we could change to stop this. Perhaps using some kind of challenge system, like entering a specific word, or captcha?
What is Photopost planning to do to stop scammer use of PP Classifieds?
Here's what the email looks like on our forum:
HMM well contact.php should only be available to registered users to my knowledge unless something has been altered. I do not have any ideas about how to prevent a user from sending an email to another user the contents that is. Captcha could be added we do use that other places.
Yeah, these guys are getting passed all of our other blocking efforts. If there was a captcha it would make things harder to use the contact.php with a bot.
I can work on adding captcha in the next release but my thoughts are they will get past that also as they get past all the vbulletin forum captcha here all the time. I am always deleting scam posts and we have captcha for registration.
I think that or some other captcha will slow them down for a while. They have their bots all set up without it, adding it will throw them off for a while.
Either that or let admins set a challenge task like "1+3=?" or write "classified." Just like a lot of the VB mods for blocking spam do.
Some sort of scammer prevention really should be added to the product. It's a huge problem.
Yeah captcha is already part of that page but only shown to guests in the present form. I added a global usergroup permission in usergroup settings in Classifieds 5.0 so stay on the lookout.
|All times are GMT -5. The time now is 09:39 PM.|
Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.2.0