Fake signups: what to do

Some users report fake signups, which is rare, but it happens.

Determine the source signups

Most of the time, these don't come from MailPoet's forms. Look for these:

  1. See in your WordPress Comments > Spam if the email addresses there match the signups in MailPoet
  2. Check your WordPress users for any suspicious users, possibly with the same email addresses
  3. Check in your database, with phpMyAdmin, if there are no hidden WordPress users (common hack)
  4. Check in your database, in the table "..._mailpoet_email" if there are any suspicious email addresses

Steps to prevent fake signups

  1. Enable signup confirmation in your MailPoet > Settings > Signup Confirmation. This option is turned on by default.
  2. If you enable signups in the comments (MailPoet > Settings > Advanced): enable Akismet or similar anti spam for comments
  3. Install the anti-spam plugin WP-SpamShield.