Are You Getting Spammed Too?

15 Nov
2008

Posted by Ade Magnaye as General, WordPress Tips

The other day I opened up my blogs and I saw that they had this huge influx of comments. As this was rather unusual, I checked the moderation queue and to my surprise, I found a huge number of comment spam. Weirdly though, the spam contained none of the usual links, and instead found a random string of letters and numbers, like “j2miob2e5gylwz9w”.

Comment Spam

As if that wasn’t weird enough, it seems that the spam got through Akismet multiple times. The spam messages came from these IP addresses:

94.102.60.150
94.102.60.151
94.102.60.152
94.102.60.153

Searching Google with the IP addresses brings up a lot of discussion about the spamming incident. Apparently, this has happened to a lot of blogs over a short period of time, and most, if not all, of the affected blogs were on WordPress.

So, what on earth was that about? It seems like somebody’s testing a brand-new spam tool that actively tagrets WordPress blogs. I’ve already blocked the said IP addresses via .htaccess, but who knows when the next spam attack will come?

This is probably the best time to brush up on some basic comment spam prevention tips. WordPress has some built-in spam prevention features, like:

Keep comment modderation on; make sure that people need to have a previous comment approved first before they can successfully comment.
If a comment has more than two links contained in it, it should be automatically moderated.
Fill out the “common spam words” form in WordPress so that comments get moderated when anything within the comment (including the author URI, author name, author email and the body of the comment itself) matches the words in the blacklist.
Akismet may not be built in WordPress by default, but it is included in the installation and installing it is the first thing I do when setting up a new blog. It still is the best spam filter out there.

If you have other anti-spam measures you implement on your blogs, just drop a comment and tell me about it.

Do you like this article? Submit it to Blogosphere News!

14 Responses

Manuel

November 15th, 2008 at 9:28 am
1

Yes, I had these Spamcomments, too. Akismet didn’t help.

I have a question, since you speak of the .htcaccess file. I would love to see a post describing what it is, what’s it useful for and how one makes one.

cheers,

Manuel
Wib

November 15th, 2008 at 10:08 am
2

First of all I got the random letter spam and then today I received a couple of spam comments from the same IP address containing around around twenty links that are comprised of random letters.

I’ve just installed WP-reCAPTCHA to see if that’ll stop it.
Infinityvers

November 15th, 2008 at 10:27 am
3

I don’t like Akismet so I use reCaptcha instead.
David de Beer

November 15th, 2008 at 10:47 am
4

hmm, Akismet was utterly useless in the last while’s spam attacks. Had no idea this was a general thing actually. I do know WP-Spamfree was much more effective in cutting the spam off than Akismet was (I turned the latter off, and activated the former and no more spam since).
but yah, comment moderation is non-negotiable.
redwall_hp

November 15th, 2008 at 12:38 pm
5

I’ve been getting them too now and then. The really odd part is there isn’t any comment link. Just random text. What’s the point? What do they get out of it?
Vince

November 15th, 2008 at 3:06 pm
6

I got some as well the other day. They had no links at all including the user name URL and that is why Akismet did not see these as spam. It does look like someone is trying out a new “tool” but when they start adding links Akismet should stop them. I’m hoping this is only spam and not a hacking tool being tested.
Vince

November 15th, 2008 at 3:18 pm
7

Just checked my spam folder as it has been a couple days. I now have the same IP trying to spam with links. Akismet did catch them and set them aside. I went ahead and blocked the IPs just in case. How lame…..
Ajay

November 16th, 2008 at 8:01 am
8

I just mark them as spam. I’m sure Akismet will learn in time
David de Beer

November 16th, 2008 at 1:11 pm
9

incidentally, I got the exact same spam via my contact form today. banned the IP it originated from, but it does seem as if I’ll have to stop being lazy and get a proper spam protected contact plugin.
the one I’m using right now just employs some simple math to verify the human-ness. clearly not enough.
Wib

November 16th, 2008 at 1:55 pm
10

Well WP-reCAPTCHA doesn’t work as I’ve just received another spam comment from 94.102.60.153. It’s another one of the twenty links of gibberish style ones.
James Turnbull

November 17th, 2008 at 3:51 am
11

We’ve been receiving hundreds of these comments each day since a couple of weeks ago. Akismet isn’t helping, and doesn’t appear to be learning them. Initally they had empty URLs, but now they have started adding in links to splogs.

I installed WP-hashcash alongide akismet and it’s successfully blocked all of these comments with no false positives so far.
oneighturbo.com

November 20th, 2008 at 2:43 pm
12

We use http://www.defensio.com and http://wordpress.org/extend/plugins/wp-hashcash/

Defensio has a 99.49% rate with 193 false neg. out of 39987
Gift Blog

December 1st, 2008 at 2:29 am
13

yes me 2
Bohack

December 1st, 2008 at 3:08 pm
14

Me too… so i tried installing the plugin easyban and I banned the above mentioned IPs. It works really well. Hope this helps.

Jon

RSS feed for comments on this post

Resources

Phone Cards

BloggingPro

Are You Getting Spammed Too?

Related Posts

14 Responses

Leave a reply

Categories

Resources

Recent Entries

Recent Comments

Most Commented