Spam on Sendinblue plugin

  • Hi,

    I’ve got an issue with Sendinblue plugin. A lot of fake accounts subscribe via this plugin. There was a Google Recaptcha (V3) when it began. I tried to change to Turnstile captcha (intregrating the Turnstile code directly as it’s not an option in Sendinblue plugin), but nothing changes. I created a hidden field to test which form brings spammers, and it’s definitely from this form. Do you have any idea to prevent spammers? I know the answer will be “double opt-in”, but 1/ mail box will be flooded with false emails and 2/ website uses Sendinblue transactionnal emails, so there is a cost (although it’s for your benefit). Any help would be welcome.

    The page I need help with: [log in to see the link]

Viewing 7 replies - 1 through 7 (of 7 total)
  • Plugin Support alexisbienayme

    (@alexisbienayme)

    Hi @c-tomoe,

    Could you please share a recording of the issue so we can reproduce it on our end ? Also, could you provide a screenshot of your Recaptcha’s settings ? Don’t hesitate to hide confidential informations such as Recaptcha Key.

    Looking forward to hearing from you.

    Alexis

    Hi C-Tomoe, I also tried to implement Cloudflare Turnstile directly with HTML-code, but had some issues. How did you manage to do that? Would you mind pasting your code? I would greatly appreciate it.

    Thread Starter C-Tomoe

    (@c-tomoe)

    @geralddrissner Sorry for the late answer. Code is :

    <script src="https://challenges.cloudflare.com/turnstile/v0/api.js"></script>
<p>
<div class="cf-turnstile" data-sitekey="00000aaaaaabbbbb"></div>
</p>

    And Simple Cloudflare Turnstile is installed, in which there are sitekey and secretkey.

    • This reply was modified 1 year, 6 months ago by C-Tomoe.
    Thread Starter C-Tomoe

    (@c-tomoe)

    @alexisbienayme Sorry for the late answer. It seems that there is no way to stop spams. Of course, I can’t send a “recording of the issue”, because I don’t know how it’s happening. By reverting to Google reCaptcha solution, site key is in the Site Key field of the form, secret key is in the Secret Key field of the form, and in the form itself, 

    <div class="g-recaptcha" data-sitekey="00000mysitekey"></div>

    is in the form itself, before Submit button. What else can I explain?

    Thanks a lot! I’ll give it a shot, many thanks!!

    @c-tomoe: I tried it. After 5 min, I got the first spam subscriptions. I hope that sendinblue quickly fixes that and adds cloudflare turnstile support. Apparently, their forms are especially targeted. Never had such issues with mailchimp.

    Thread Starter C-Tomoe

    (@c-tomoe)

    @geralddrissner Yes, it seems that Turnstile is useless on Sendinblue plugin. But I’ve got issues with reCaptcha (regardless of the fact that it’s not RGPD compliant) which didn’t filter spams either. I looked for honeypots too, but didn’t find one working with this plugin (although there are several ones for MailChimp plugin). Quite desperate…

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Spam on Sendinblue plugin’ is closed to new replies.