Cyber Security Center

What is RegBot/SpamBot


RegBot/SpamBot

Vulnerable computer systems and applications:

Website forums, guestbooks, comment forms.

Description:

Registration/junk mail bot is malware that automatically registers and writes messages to web forums, guestbooks, comments articles, and so on. Messages contain links to attract visitors and raise the ratings of certain website search engines. The program manages to bypass popular security features used in forums and blogs, such as user registration, email activation, CAPTCHA images, etc.

Recommendations:

  • The most reliable way to combat spam bots is to have webmasters authorize first comments by new users;
  • Use more complex CAPTCHA images;
  • Use non-text images;
  • Set message restrictions for new users and message restrictions for certain time intervals;