Simple Email Marketing
Home > Resource Center > Securing your signup forms against bot signups

Securing your signup forms against bot signups

Table of contents
No headers

It appears your contact list has been affected by a web signup form “bot”. Eeek! That sounds scary, but don’t worry. We've identified and segmented the contacts that originated from this “bot” into a segment titled "00 signup form bot." The first and last name fields contain a string of letters and numbers that indicate that these signups were not entered by a human.

In addition to segmenting the affected contacts, we’ve also temporarily suspended your account from sending email. This is to protect you or your staff from damaging your sender reputation by unwittingly sending email to the contacts signed up by the “bot”.

How did this happen?

Recently, there has been an internet-wide uptick in the abuse of open email signup forms. This type of abuse results in email addresses being added to a sender’s list without either the sender’s or the recipient’s knowledge. Forms that are not secured are vulnerable to this type of attack and, if left unaltered, can damage a sender’s reputation.

What should you do now?

In order to protect your sender reputation, you need to take steps to secure your signup form. The required action depends on the type of signup form and where that form is hosted:

  • Emma Classic Signup Form: Emma has already taken the necessary steps to secure your signup form and we will remove any spam signups from your account. The only action needed on your end is to confirm that this is the only signup form you are using. You can do so by replying to this email directly!
  • Wordpress Signup Form: Secure your signup form by updating it on Wordpress. To update your Wordpress signup form, visit the following link and click “Download Version 1.3.1”: https://wordpress.org/plugins/emma-emarketing-plugin/. Please inform us when you have updated your signup form by emailing support@myemma.com. After we receive your reply, we will remove all the “bot” signups from your account and restore your sending.
  • Custom Built Signup Form: If you, or a web developer, built a custom signup form for your site, secure it with CAPTCHA or a similar device. Google’s ReCAPTCHA is a free, easy way to add CAPTCHA to your existing signup form. Check out this link for more information: https://www.google.com/recaptcha/intro/. Please inform us when you have updated your signup form by emailing support@myemma.com. After we receive your email, we will remove all the “bot" signups from your account and restore your sending.

To summarize, we will re-enable email sending from your account after you confirm that you only have an Emma Classic Signup Form deployed or inform us when you have updated your Wordpress or Custom signup form by replying directly to this message.

Thank you for working with us to secure your signup form and protect your sender reputation! Please let us know if you have any questions and we will be more than happy to assist you.

You must to post a comment.
Last modified

Tags

This page has no custom tags.

Classifications

This page has no classifications.