Hey #MastoAdmin / #FediAdmin folks, there's a spam...

Hey #MastoAdmin / #FediAdmin folks, there's a spam wave happening.

They are using QR codes with random color schemes so you can't use blurhash filters. And there is no text other than username direct mentions

Spam usernames are random strings, on poorly moderated servers as usual

Anyone have recommendations for mitigation?

If you don't have an admin team that can handle properly auditing account registrations and dealing with reports quickly, I strongly recommend disabling open registrations on your servers for now

#boost #spam

Like 4 November at 5:36 | Open on urusai.social

6 comments

qugalet

@neatchee >new spam
>it's japs with fucking discord. AGAIN

please ban these japs from internet, i'm begging you :BocchiDead:

4 November at 6:57 | Open on pl.m0e.space

Тр3тий Сергеевич

@qugalet CTKP again, eh? I thought they have been dealt with months ago.
@neatchee

4 November at 8:45 | Open on mastodon.ml

picofarad

@neatchee heh, if you don't disable open registration (or at least email + captcha) you get several new accounts a day that never post but somehow output traffic (spam DMs?).

Also, curiously, there's been a bunch of Matrix spam lately, too. Invites to DM and invites to external servers.

4 November at 8:12 | Open on noauthority.social

WHITE HOTEP

@picofarad @neatchee prolly sending each other child porn

4 November at 8:17 | Open on posting.lolicon.rocks

Мя :sparkles_lesbian:

@neatchee we use this project
https://github.com/halcy/mastodon_mod_tools/
It runs small ML models to calculate similarity of text/images

Just now, I tried to throw some spammer QRs into it, and looks like it works. There will be false positives, so you should monitor generated reports

4 November at 9:19 | Open on mastodon.ml

Purple :verified:

@mo @neatchee

I wonder if this tool could be modified to check for QR codes in images, decode them and based on the contents of the QR codes ban them

4 November at 12:47 | Open on woof.tech