From Honey Pot to Gnat Trap
By Amanda Gray
We noticed a huge spike in spam submissions on one of our client’s Keap contact forms. Over the span of 4 days, she averaged daily 30+ new spam contacts for this particular form.
Initially, we set up a honey pot, as suggested in Keap’s “Deterring Spam Bots” help article, using a hidden text field and an action set that applies a tag if the field in the contact record has a value. The logic behind using a hidden form field is that, while a human has no way of seeing this field and entering a value, a bot will often fill out every field, regardless of whether it is hidden or not. Using the tag application, the Spam contact can easily be removed from campaigns and deleted.
Unfortunately, this didn’t work in our case.
Digging deeper into each contact record and submission, we noticed that the bots were always selecting the last radio button for one of the fields. Leveraging this information, we switched tactics, which a week after implementing, has had a 100% success rate.
For a quick and easy solution to form submission bots…
- When creating (or editing) your form, add a REQUIRED radio field. You can have as many radio buttons as you would like, but make sure your last radio is a dummy. On this radio button, add a tag. I named mine, in this example, “Spam Trap”.
- After publishing the campaign, copy your unstyled HTML form code and add to your webpage and style. In the last span in your radio button field, add a class. As you can see, the class I added is ‘hidden’ (you can use whatever you’d like).
- Within your stylesheet, using your new class, add the following style. This hides the option from humans, while still making it an available selection for bots.
Developer Note: We opted to not use ‘display: none’ on the field. In many cases, the ‘display: none’ style rule will prevent the bot from being able to target the field.
- As you can see, the hidden radio button still appears in the HTML, but is hidden from the user’s view.
- Now that all bot submissions are being tagged, it’s time to head back into Keap. Open up your contacts from the main navigation, and hit the New Search button. Within the search criteria, go down to Tags and add the tag you created for spam submissions amd click search.
Once the contact list populates, if you’ve managed to get any spam submissions since publishing your form, click the Save button at the top of the list. In the popup, name the search, select which Keap user you’d like to share it with, and click the green Save button.
- Moving back to your Keap dashboard, click the Add Widgets button in the top right corner of the screen. Once the page has loaded, scroll down to Saved Search or Saved Report option and click the Add to Dashboard Button.
- Within the new widget you have created, give it a name, select the Saved Search radio button, select COUNT from the first dropdown, select Contact from the second dropdown, and in the third dropdown, select your previously saved search, and give your stat a title.
- Once saved, your widget will look like this. From here, you can click the number next to Spam Catches, which will bring up a list of all your Spam contacts, and you can easily mass delete them.