How do I stop a spam attack from my contact form?
Verify the tickets generated from your contact form. To do that, open a ticket and check the events. If a ticket is submitted through a channel other than the web form, such as X Corp or email, details about the channel appear. For example:
CAPTCHA is enabled by default to mitigate spam attacks on your web form. To further prevent spam, require your end users to register and verify their email to access the web form. If your account receives a high volume of spam tickets, you can bulk delete them.
To combat other types of spam:
- If you use a messaging channel, admins can restrict access by allowing only specified IP addresses. Users that aren't on the allowlist are blocked from messaging.
- If the spam is from your Chat widget, see How can I stop a spam attack coming from the Chat widget?
- If the spam is from a web service, see How can I combat spam submitted via web service?