Mail.ru Spam Again

Me too.
About one per hour sent emails to mail.ru accounts

@sapozhnik
Which subscribers group are yours going in as, Public or a custom group?

Public.
I temporary disable it while problem will not solved

Started about just over to days ago on my site. Not a lot of emails, probably around 20 as @slothwx mentions.

I don’t have access to the log files as its on a hosted server, so can’t really debug the issue. Have disabled the plugin for now…

Same issue. I’ve tried to block multiple IP addresses on my server, but doesn’t appear to slow things down. Only alternative right now is to disable the plugin until we get an answer.

• This reply was modified 6 years, 2 months ago by ptarver.

Hi all,

We are looking into this issue and we are working on the fix.
Sorry for inconvenience happen.

Release a new version of Email Subscriber(v 3.5.10) addressing “Spam signup” issue.
It will stop spam signups.
Please update your plugin and let us know how it goes?

@icegram

Would it be possible for an email to be sent out to admins (similar to the ‘you have a new subscriber’ email) for each person (regardless if they are confirmed or not)? That would make catching these spamers a little easier to stop on our end before 20+ are signed up.

• This reply was modified 6 years, 2 months ago by Sloth Weather.
• This reply was modified 6 years, 2 months ago by Sloth Weather.

To add to what @icegram had to say, capturing the ip address of the subscriber and sending it with the new subscriber notice or saving it in the subscriber list would help me tremendously because then I could easily block that user from my server. Unfortunately because the confirmations are sent from my server, the headers of those messages all include my own server ip, not the actual form user. May not be possible, but I have a form builder that easily captures the ip address of the user and I use that in the same way.

Hi Sloth and ptarver,

Thank you for your suggestions.
Yes, this would be nice to have mail to admins before confirmation.
Currently, only after confirmation email is being sent.
We will consider this as a feature request to Email Subscribers.
Apart from that can you let us know about the latest release of Email Subscribers?
Did all went well? Do you have any spam signups after the update?

I only re-activated the plugin this morning, but will update you later.

Would it be possible to provide some basic information about how these .ru signups are being allowed? Is there some cross-posting function they are using to do this? I’m more than slightly concerned that for at least the second time since I’ve been using the plug-in this same sign-up attack has occurred with similar traits and our best solution is to deactivate the plug-in and wait for an update. Does this mean the plugin is not secure?

@icegram,

I am in the same boat as @ptarver, reactivated this morning and waiting results (hopefully there’s nothing). I do have the same concern, since this is the second time in a short time span, I feel there may be a third chance of this happening, since they were not using a public facing form to subscribe.

*another side note***
After I updated then reactivated this plugin, it randomly sent a single newsletter out to a small group of subscribers. We never send out or use newsletters and it only went to a small test group, so it wasn’t a big deal. But did anyone else (after reactivating/updating this plugin) have anything get sent out?

This is happening again. This is the third time in a short time span that spammers from mail.ru are signing up for a public group that isn’t on any public website.

I updated recently and I’m still getting spammers from mail.ru as well.

Hi all,

We have just released new version of Email Subscribers addressing this issue.
Please update Email Subscribers to the latest version and let us know how it goes?