Your Achievements
Level 1
0% to
Level 2
Next /
to gain points, level up, and earn exciting badges like the new Applaud 5 BadgeLearn more!
View All BadgesSign in to view all badges
Open Alert Bar
SOLVED

Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

Go to solution
DeniseGreenberg
Level 4
Level 4
‎08-11-2022 01:36 PM
‎08-11-2022 01:36 PM

Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

Hi There,

One of my clients seems to be plagued by a lot of bot form fills over the past several months. We are looking for recommended solutions. Any Captcha type solutions (or other solutions) that work well with Marketo forms?

 

Thank you!

Denise

0 Likes
2,662
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
SanfordWhiteman
Level 10 - Community Moderator
Level 10 - Community Moderator
‎08-11-2022 02:04 PM
‎08-11-2022 02:04 PM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

reCAPTCHA is the one for me. If it’s really bots, of course (not fast-paced malicious humans).

View solution in original post

0 Likes
2,654
Reply
10 REPLIES 10
SanfordWhiteman
Level 10 - Community Moderator
Level 10 - Community Moderator
‎08-11-2022 02:04 PM
‎08-11-2022 02:04 PM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

reCAPTCHA is the one for me. If it’s really bots, of course (not fast-paced malicious humans).

0 Likes
2,655
Reply
DeniseGreenberg
Level 4
Level 4
‎08-12-2022 10:59 AM
‎08-12-2022 10:59 AM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

Thank you!

0 Likes
2,563
Reply
DeniseGreenberg
Level 4
Level 4
‎08-13-2022 02:22 PM
‎08-13-2022 02:22 PM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

Hey @SanfordWhiteman - What if it turns out the invalid form fills are coming from malicious humans? Note that we have global form validation rules in place - one to block consumer email domains and the other to block competitive domains. We could obviously add "malicious" fake domains to to one of the validation rules but I don't think we're seeing much in the way of repeats. I can't think of how this could be solved but perhaps that's due to the limits of my imagination! 🙂

0 Likes
2,481
Reply
SanfordWhiteman
Level 10 - Community Moderator
Level 10 - Community Moderator
‎08-13-2022 02:51 PM
‎08-13-2022 02:51 PM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

If the email addresses are legit (can receive emails) and don't have other identifying marks (like being from known disposable email domains) then you're kinda out of options. Malicious people submitting at a slow rate from a variety of IP addresses might as well be good leads.

0 Likes
2,475
Reply
schlesinger
Level 2
Level 2
‎05-31-2023 09:25 AM
‎05-31-2023 09:25 AM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

Hey @SanfordWhiteman, we have captcha set up and are filtering/using smart campaigns to manage which leads make it to CRM/Alerts based on captcha score, but what about completely blocking from submitting the form? Reason: We do not want Google reading it as a successful form submission. Is there a way to block a form from fully submitting based on the captcha score? What about IP? I can't find much as far as a filter or form rules for this.

0 Likes
1,642
Reply
SanfordWhiteman
Level 10 - Community Moderator
Level 10 - Community Moderator
‎05-31-2023 02:17 PM
‎05-31-2023 02:17 PM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

It’s impossible, by definition, to stop a form from submitting if it doesn’t pass reCAPTCHA.

 

reCAPTCHA is processed and scored on the server side. If it were processed on the client side then anyone could fake a passing score.

 

If you want to ensure that only form submits above a certain reCAPTCHA score are logged to GA, you need to log the GA hit via a webhook (i.e. measurement protocol). This is better practice than doing it on the client side anyway since people sometimes hook the onSubmit by accident or don’t properly take account of existing onSuccess events.

0 Likes
1,636
Reply
schlesinger
Level 2
Level 2
‎05-31-2023 03:20 PM
‎05-31-2023 03:20 PM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

Thanks Sanford, what's crazy is I am looking at the raw scores and seeing 0.8, 0.9 in form activity, which is why our trigger constraint, which is already set higher to .8+ for alerts is not holding these back.

0 Likes
1,633
Reply
SanfordWhiteman
Level 10 - Community Moderator
Level 10 - Community Moderator
‎05-31-2023 04:16 PM
‎05-31-2023 04:16 PM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

But now I'm confused, if these are scoring this high what makes you think they're actually bots (and not bad humans)?
0 Likes
1,629
Reply
schlesinger
Level 2
Level 2
‎06-01-2023 06:15 AM
‎06-01-2023 06:15 AM

Re: Recommendations Sought for Captcha or Other Method for Blocking Bot Form Fills

At first, that was my thought, but after inspecting the scores, I am leaning towards bad actors filling out forms maliciously. 

1,624
Reply
Home