CleanTalk's blog

    Sign up

    Tag: wordpress anti spam

    • Porto Theme Login popup Spam Protection for WordPress

      Porto Theme Login popup Spam Protection for WordPress

      CleanTalk added spam protection for Porto Theme Login popup using direct form integration. So in case, you prefer using this theme, be sure to use the most effective Anti-Spam plugin. Read the guide below and learn 4 steps to protect your login form from spam.

      Once the CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website.

      Download CleanTalk Anti-Spam plugin | Download Porto Theme 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «CleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      That’s it! From now you How to completely protect your Contact Forms from spam.

      How to check Porto Theme Login popup Spam Protection

      You can test the work of Anti-Spam protection for your Login popup by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your CleanTalk account – Register now and protect your Contact Forms from spam in 5 minutes

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      Additional features

      • CleanTalk protects all forms at once: comments, registrations, feedbacks, contacts, reviews.
      • Installation takes about 1-2 minutes.
      • Smart 99% protection against spambots.
      • Always online – 24/7 technical support.
      • Logs, SpamFireWall, personal lists, country filters, stop-words, and many others.

      Discover the complete list of CleanTalk Anti-Spam plugin features here.

    • Revealing Vulnerabilities: The All-in-One SEO Plugin Dilemma

      Revealing Vulnerabilities: The All-in-One SEO Plugin Dilemma

      In the expansive domain of WordPress, a critical security flaw has been unveiled within the widely-utilized All-in-One SEO plugin. Known by its identifier, CVE-2024-3368, this vulnerability exposes a concerning loophole that malicious actors can exploit through Stored Cross-Site Scripting (XSS) attacks, jeopardizing the security of numerous websites. The trouble concerns all versions of All-in-One SEO older than 4.6.1.1.

      This flaw was unearthed during routine security evaluations, shedding light on a troubling scenario where unauthorized individuals can inject harmful JavaScript code directly into WordPress posts. This unauthorized access allows for the manipulation of administrative privileges, potentially leading to serious repercussions such as website tampering and unauthorized data access.

      In response to this alarming revelation, immediate action is crucial. WordPress website owners are strongly advised to promptly update their All-in-One SEO plugin to the latest version, fortified with patches to address this vulnerability. Furthermore, implementing stringent security measures, including regular audits and access controls, is essential to mitigate the risk of exploitation.

      Behind the scenes, CleanTalk remains dedicated to safeguarding the WordPress ecosystem. Through vigilant monitoring of plugins and the provision of timely alerts, CleanTalk aims to empower website owners with the necessary tools and knowledge to defend against cyber threats effectively and preserve the integrity of their digital platforms.

    • Login/Signup Popup Forms – Spam Protection for WordPress

      Login/Signup Popup Forms – Spam Protection for WordPress

      CleanTalk added spam protection for Login/Signup Popup Forms using direct form integration. So in case, you prefer using Login/Signup Popup Forms be sure to use the most effective Anti-Spam plugin. Read the guide below and learn 4 steps to protect your website from spam.

      Once the CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website. It may not only be Login/Signup Popup Forms but also many others.

      Note: the protection only works with alternative cookies on.

      Download CleanTalk Anti-Spam plugin | Download Login/Signup Popup Forms 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «СleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      That’s it! From now you How to completely protect your Login/Signup Popup Forms from spam.

      How to check spam protection for Login/Signup Popup Forms

      You can test the work of Anti-Spam protection for your Login/Signup Popup Forms by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your CleanTalk account – Register now and protect your Login/Signup Popup Forms from spam in 5 minutes

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      Additional features

      • CleanTalk protects all forms at once: comments, registrations, feedbacks, contacts, reviews.
      • Installation takes about 1-2 minutes.
      • Smart 99% protection against spambots.
      • Always online – 24/7 technical support.
      • Logs, SpamFireWall, personal lists, country filters, stop-words, and many others.

      Discover the complete list of CleanTalk Anti-Spam plugin features here.

    • Responsive Contact Form Builder – Spam Protection for WordPress

      Responsive Contact Form Builder – Spam Protection for WordPress

      CleanTalk added spam protection for Responsive Contact Form Builder using direct form integration. So in case, you prefer using Responsive Contact Form Builder be sure to use the most effective Anti-Spam plugin. Read the guide below and learn 4 steps to protect your website from spam.

      Once the CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website. It may not only be Responsive Contact Form Builder but also many others.

      Download CleanTalk Anti-Spam plugin | Download Responsive Contact Form Builder 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «СleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      That’s it! From now you How to completely protect your Responsive Contact Form Builder from spam.

      How to check spam protection for Responsive Contact Form Builder

      You can test the work of Anti-Spam protection for your Responsive Contact Form Builder by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your CleanTalk account – Register now and protect your Responsive Contact Form Builder from spam in 5 minutes

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      Additional features

      • CleanTalk protects all forms at once: comments, registrations, feedbacks, contacts, reviews.
      • Installation takes about 1-2 minutes.
      • Smart 99% protection against spambots.
      • Always online – 24/7 technical support.
      • Logs, SpamFireWall, personal lists, country filters, stop-words, and many others.

      Discover the complete list of CleanTalk Anti-Spam plugin features here.

    • MailChimp Forms by MailMunch – Spam Protection for WordPress

      MailChimp Forms by MailMunch – Spam Protection for WordPress

      CleanTalk added spam protection for MailChimp Forms by MailMunch using direct form integration. So in case, you prefer using MailChimp Forms by MailMunch be sure to use the most effective Anti-Spam plugin. Read the guide below and learn 4 steps to protect your website from spam.

      Once the CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website. It may not only be MailChimp Forms by MailMunch but also many others.

      Download CleanTalk Anti-Spam plugin | Download MailChimp Forms by MailMunch 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «CleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      That’s it! From now you How to completely protect your MailChimp Forms by MailMunch from spam.

      How to check spam protection for MailChimp Forms by MailMunch

      You can test the work of Anti-Spam protection for your MailChimp Forms by MailMunch by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your CleanTalk account – Register now and protect your MailChimp Forms by MailMunch from spam in 5 minutes

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      Additional features

      • CleanTalk protects all forms at once: comments, registrations, feedbacks, contacts, reviews.
      • Installation takes about 1-2 minutes.
      • Smart 99% protection against spambots.
      • Always online – 24/7 technical support.
      • Logs, SpamFireWall, personal lists, country filters, stop-words, and many others.

      Discover the complete list of CleanTalk Anti-Spam plugin features here.

    • Contact Form by Supsystic – Spam Protection for WordPress

      Contact Form by Supsystic – Spam Protection for WordPress

      CleanTalk added spam protection for Contact Form by Supsystic using direct form integration. So in case, you prefer using Contact Form by Supsystic be sure to use the most effective Anti-Spam plugin. Read the guide below and learn 4 steps to protect your website from spam.

      Once the CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website. It may not only be Contact Form by Supsystic but also many others.

      Download CleanTalk Anti-Spam plugin | Download Contact Form by Supsystic 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «CleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      That’s it! From now you How to completely protect your Supsystic Forms from spam.

      How to check spam protection for Contact Form by Supsystic

      You can test the work of Anti-Spam protection for your Supsystic Forms by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your CleanTalk account – Register now and protect your Supsystic Forms from spam in 5 minutes

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      Additional features

      • CleanTalk protects all forms at once: comments, registrations, feedbacks, contacts, reviews.
      • Installation takes about 1-2 minutes.
      • Smart 99% protection against spambots.
      • Always online – 24/7 technical support.
      • Logs, SpamFireWall, personal lists, country filters, stop-words, and many others.

      Discover the complete list of CleanTalk Anti-Spam plugin features here.

    • CleanTalk prevents receiving spam through your SmartForms forms

      CleanTalk prevents receiving spam through your SmartForms forms

      If you prefer to use Smart Forms Contact Form, always be sure to use the most effective Anti-Spam plugin. Read the guide below and learn how CleanTalk protects your SmartForms contact forms from spam.

      Once CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website. It may not only be Smart Forms Contact Forms but many others.

      Download CleanTalk Anti-Spam plugin | Download Smart Forms Contact Form 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «СleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      That’s it! From now you know how to prevent getting spam via Smart Forms Contact Form in 5 minutes

      You can always use our detailed installation instructions.

      How to check your Smart Forms contact form are protected from spam

      You can test the work of Anti-Spam protection for your Smart Forms Contact Forms by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your Cleantalk account – Register now and enjoy while CleanTalk protects your SmartForms contact forms from spam.

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      Additional features

      • CleanTalk protects all forms at once: comments, registrations, feedbacks, contacts, reviews.
      • Installation takes about 1-2 minutes.
      • Smart 100% protection against spambots.
      • Always online – 24/7 technical support.
      • Logs, personal lists, country filters, stop-words and many another.

      A complete list of CleanTalk Anti-Spam plugin features can be viewed here.

      WordPress spam protection

    • Hiding your WordPress username from bad bots

      Hiding your WordPress username from bad bots

      Do you know how to hide your WordPress usernames from bad bots? We are glad to introduce you a new Security plugin improvement: from now CleanTalk allows you to hide WordPress username from bad bots brute-force.

      Before this improvement became available some bots could learn WordPress usernames by their ID and use it to brute-force these accounts later. For example, a request like «‎https://blog.cleantalk.org/?author=007»‎ could return the username «https://blog.cleantalk.org/author/james_bond».

      This option is switched off by default so in order to avoid vulnerabilities like that we highly recommend to switch it on.

      Step 1: Go to PluginsInstalled Plugins.

      Step 2: Go to Settings beneath the Security plugin.

      And after that choose General Settings.

      Step 3: Go to Miscellaneous section and find checkbox ‎«‎Prevent collecting of authors logins» and just check this box.

      Step 4: Press the «Save Changes» button.

      Success! That’s how quickly CleanTalk allows you to hide WordPress username from bad bots

      If you have any questions, add a comment and we will be happy to help you.

      Create your Cleantalk account – Register now and enjoy while CleanTalk Anti-Spam plugin protects your Clean and Simple Contact Forms from spam.

    • Access key rotation for Anti-Spam and Security

      Access key rotation for Anti-Spam and Security

      In case your website is connected to CleanTalk it uses a special Access key to exchange information. We have improved its functionality to guarantee you the safest user experience.

      Connect your website to CleanTalk in 5 minutes and forget about spam.

      Improved Access key safety

      Your Anti-Spam and Security Access keys don’t have any expiration date. So don’t worry, you don’t have to do anything about it.

      Access key doesn’t need to be manually renewed except several cases:

      • In case you gave your website access to web developer or a freelancer and it may be compromised.
      • When your website had been hacked.
      • When you expect your CleanTalk access being given or copied to a third party.
      • In case you have any other issues and risks with CleanTalk account access.

      Also you can always change your password or email in CleanTalk dashboard.

      How to update your Access key

      Step 1: Add your website to dashboard using the button below. If your site is already connected to CleanTalk pass to Step 3.

      Step 2: Input your website URL in “Site URL” field.

      Step 3: Click on “Settings” button under your website name.

      Step 4: Go to “Change the Access key”.

      Step 5: Click on “Generate key” to create new safe Access key.

      Step 6: Then Apply the key by pressing the button below.

      Step 7: And just close the window after you are finished.

      Well done! Your new Access key is successfully generated and applied to your website. From now it will be active and if needed, you may change it again to guarantee its safety.

    • New Options: CleanTalk Anti-Flood and Anti-Crawler

      Hello,

      Recently we added new options for SpamFireWall.
      They are Anti-Flood and Anti-Crawler. They are meant to block different bots. Most of the visiting bots are not being shown in the statistics of Google Analytics so you can’t see the exact number of their visits. Nevertheless, bots can create a big load on your website and be a big part of the overall statistics of visits. They can gather various data about your website, links, pictures, text and so on. More aggressive bots can copy your website information to use it later for themselves.

      Anti-Flood and Anti-Crawler options are intended for blocking unwanted bots, content parsing, shop goods prices parsing or aggressive website scanning bots. Web crawling bots such as Google, Bing, MSN, Yandex, Ahrefs are excluded and will not be blocked.

      Anti-Crawler — is designed for blocking any bots (with the exceptions) on your website. The initial visit launches the checking process whether it’s a bot or a human. If the checking fails then visiting the second page will return a blocking screen. The IP address will be added to the blacklist for 10 minutes and when this time period expires the data about that IP address will be deleted.
      This option helps in blocking any parsing and HTTP DDoS attacks.

      Anti-Flood — is designed for preventing any aggressive behavior of bots (with the exceptions). The option checks how many pages were visited by one IP in 1 minute. If the amount of visited pages exceeds the set threshold then that IP will see a blocking screen. The blocking screen is active for 30 seconds and when this time period expires the IP address will be able to visit the website until it exceeds the threshold again.

      By default, the threshold is set to 10 pages per 1 minute. This number was picked based on the statistics. Usually, a normal visitor does not open 10 pages at once, it’s about 3-4 pages so the threshold is set with a margin.
      You can set your own threshold at any time: https://cleantalk.org/help/anti-flood-and-anti-crawler

      Thank you!