reCAPTCHA not working properly

Tom Baldock

• October 31, 2024 10:54

Hi,

I've installed Google's reCAPTCHA following all of the necessary steps, however we are still receiving a lot of spam messages. We have been advised to use a check box to verify but this is V2 and your instructions state we can only use V3. Is there a reason or way around this?

Thanks, 

0

• 

  Ariel H.

  • October 31, 2024 13:09

  Hi Tom,

  Thank you for reaching out to us.

  Please compare the spam messages you received on emails collected in Brizy -> Leads. All emails received are recorded here, so if the spam emails you received are not found here, it's likely that your email address is visible in one of your pages, making it an easy target for email harvesting.

  

  Best regards,
  Ariel H.

  0
• 

  Tom Baldock

  • October 31, 2024 14:04

  Hi, 

  We integrate with gmail and our leads don't show in Brizy under leads. I can see that the spam messages are all coming from the same page on the same Brizy contact form, which has reCAPTCHA set up correctly according to your guidelines. 

  Thanks,

  0
• 

  Ariel H.

  • October 31, 2024 14:50

  Hi Tom,

  Thank you for the update.

  If you set up the form following the steps in the link below, all emails should be recorded in Brizy Leads:  
  https://support.brizy.io/hc/en-us/articles/360044216151-Email-notification-via-Gmail

  We can also verify if the emails originated from the contact form by examining the email headers. 

  To assist with this, please open one of the spam emails in your account, click on the three dots to the right of the email, select "Show Original," 

  
  and download the header information.

  

  Once you have the file, please send it to us for review.

  Email header originating from the form will look similar to this:

  

  Best regards,  
  Ariel H.

  0
• 

  Tom Baldock

  • October 31, 2024 15:18

  Hi,

  I've followed the instructions for setting up gmail step by step but nothing comes through in Brizy, but we don't need it too unless it means something's not working correctly. I've downloaded the original but cannot attach it, so I've attached a screen shot instead.

  Thanks, 

  0
• 

  Ariel H.

  • November 01, 2024 07:23
  • Edited

  Hi Tom,

  The email is indeed coming from the contact form. Even with reCAPTCHA enabled, spam may still slip through for a few reasons. Advanced bots using machine learning or human “click farms” can sometimes bypass reCAPTCHA's challenges, especially in reCAPTCHA v3, which uses a scoring system to evaluate the likelihood of spam. If the sensitivity threshold is set too low, it may allow certain spam submissions to pass through, so raising the score can help reduce these instances, though it could also potentially block some legitimate users - https://www.youtube.com/watch?v=vt4bFOjRUK0

  Additionally, reCAPTCHA primarily targets automated bots, which means it doesn’t stop spam submitted by actual people. Human spammers or bots with scripted workarounds can sometimes bypass reCAPTCHA if validation isn't set up on the server side as well as the client side. If spam persists, consider combining reCAPTCHA with other anti-spam tools such as Akismet to add extra filtering layers.

  Best regards,
  Ariel H.

  0

Please sign in to leave a comment.