Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
By Devon_A on
Good evening!
I'm writing to see if anyone has a successful solution to this issue. One of the Drupal sites I maintain has been inundated with about 20 new accounts created daily, all of them by spambots showing @yahoo.com or @drupaler.org email addresses. I've had to switch account signups back to requiring my approval so I can catch and delete these accounts as they're created.
At first, I had the standard image CAPTCHA installed on the user registration form. When I saw this becoming a problem, I switched it to advanced CAPTCHA and enabled the math question to weed out the bots. It doesn't matter what form of CAPTCHA I'm using; these accounts keep showing up and somehow bypassing the CAPTCHA.
Has anyone else had this issue? If so, how did you resolve it? Any ideas or suggestions will be greatly appreciated.
Thank you for your time!
-Dev
