F*** Spammers

https://www.reddit.com/r/ModSupport/comments/o6l2z5/f_spammers/

created by worstnerd on 23/06/2021 at 20:18 UTC

391 upvotes, 43 top-level comments (showing 25)

Hey everyone,

We know that things have been challenging on the spam front over the last few months. Our NSFW communities have been particularly impacted by the recent wave of leakgirls spam on the platform. This is so frustrating. Especially for mods and admins. While it may be hard to see the work happening behind the scenes, we are taking this seriously and have been working on shutting them down as quickly as possible.

We’ve shared this before[1], and this particular spammer continues to be adept at detecting what we are doing to shut it down and finding workarounds. This means that there are no simple solutions. When we shut it down in one way, we find that they quickly evolve and find new avenues. We have reached a point where we can “quickly” detect the new campaigns, but quickly may be something on the order of hours… and at the volume of this actor, hours can feel like a lifetime for mods, and lead to mucked up mod queues and large volumes of garbage. We are actively working on new tooling that will help us shrink this time from hours to hopefully minutes, but those tools take time to build. Additionally, while new tooling will be helpful, we always know that a persistent attacker will find ways to circumvent.

1: https://www.reddit.com/r/redditsecurity/comments/nmhmj0/q1_safety_security_report_may_27_2021/

To shed more light on our efforts, please see the graph below for a sense of the volume that we are talking about. For content manipulation in general (spam and vote manipulation), we received shy of 7.5M reports and we banned nearly 37M accounts between January and March of this year. This is a chart for leakgirls spam alone:

Number of leakgirls accounts banned each week

While we don’t have a clear, definite timeline on when this will be fully addressed, the reality of spam is that it is ever-evolving. As we improve our existing tooling and build new ones, our efforts will get progressively better, but it won't happen overnight. We know that this is a major load on mods. I hope you all know that I personally appreciate it, and more importantly your communities appreciate it.

Please know that we are here working alongside you on this. Your reports and, yes, even your removals, help us find any new signals when this group shifts tactics please keep them coming! We share your frustration and are doing our best to lighten the load. We share regular reports in r/redditsecurity discussing these types of issues (recent post[2]), I’d encourage you all to subscribe. I will try to be a bit more active in this channel where I can be helpful, and our wonderful Community team is ever-present here to convey what we are doing, and let us know your pain points so I can help my Safety team (who are also great at what they do) prioritize where we can be most effective.

2: https://www.reddit.com/r/redditsecurity/comments/nmhmj0/q1_safety_security_report_may_27_2021/

Thank you for all you do, and f*** the spammers!

Comments

Comment by redtaboo at 23/06/2021 at 20:19 UTC

1 upvotes, 1 direct replies

As an aside, one of our teams is in the process of making some modqueue improvements for you. This afternoon we're making a change aimed at relieving some of the impact on you. It will take a bit to get through to all communities, so hang tight. Moving forward, posts removed by our spam filter will be automatically moved to the spam listing, rather than your main mod queue. This means that future incidents will not clog up your modqueue.

Important note: content filtered by Automod will still appear in the standard modqueue as they do today. Let us know what you think here!

Comment by djscsi at 23/06/2021 at 22:44 UTC*

63 upvotes, 3 direct replies

Hello,

As someone who has spent seriously way too much time tracking and reporting "these fucking accounts" - especially over the last month - here are some pain points and/or suggestions:

1 Very helpful thing would be for your team to provide some kind of internally-recognized report reasons/keywords that reporters can use to categorize/flag spam accounts. For example, I'm sure your team internally has some way that you tag leakgirls spam specifically. When someone includes "leakgirls" in their report reason, something probably detects that and uses that as an elevated signal for your spam detection systems. When I make a spam report that says "karma farming bot" it probably just goes into the void? For all I know, your systems are just ignoring my reports because I'm reporting 50+ accounts every day. Give us something that the "spam fighters" can use to signal your systems. Give us some way to actually do something to help - you have a small army of free, dedicated spam trackers who are wasting hours of their time posting reports to /dev/null , many of whom have given up and developed their own third-party tools to detect and fight this spam without any help from reddit. Reddit has even been making it progressively harder to submit reports, I assume intentionally - it's extremely frustrating.

2 Seriously, just nuke all of the "crypto pumping" subreddits. These subs are responsible for the vast majority of the current wave of karma farming / repost accounts that are infesting absolutely every type of subreddit right now. Go look at CryptoMoonShots, CryptoMarsShots, shitcoinpotential, shitcoinmoonshots, SatoshiStreetDegens, etc etc. and you will see that every other post and comment is from an account like pgolleBdfghry2356 or dkasakast45676 or drezetzdfdgdfg , all predictably aged accounts that spent a few days predictably running a karma farming script before predictably turning into crypto spammers. Aside from the fact that all this pump & dump[1] activity is probably illegal, why is there no repercussion for any of this? It's not like they are taking any measures to obscure what they're doing - it's all out in the open. At this point I kinda have to assume that reddit has analyzed this activity and decided it's not actually a problem, maybe because these bots generate tons of awards/clicks/engagement, many making it to /r/all ... Still depressing to see such a significant % of posts/comments from bots. Not to mention when these bots repost someone else's "my dog died" post from last year and get tons of karma/awards, only for the person whose dog actually died to see the post. Imagine how that feels.

1: https://en.wikipedia.org/wiki/Pump_and_dump

3 There is a particularly insidious type of script that copy/pastes posts from smaller/niche communities (hobby, technical, professional, etc.) that is causing tons of unsuspecting well-meaning people to waste hours of time writing out thoughtful and in-depth replies to bots who will never read them and will just auto-delete the post after a few hours. IMO this is far more damaging to the fabric of the community than the typical karma farming bots that just repost last year's popular posts on popular subreddits. I made a post about it with some examples here: https://www.reddit.com/r/TheseFuckingAccounts/comments/o6id82/some_particularly_insidious_bots/[2] It's great that you're fighting the leakgirls spam (really), but I think the stuff I'm talking about here is far more damaging to reddit than the occasional porn image that makes it through into r/CuteCatMemes .

2: https://www.reddit.com/r/TheseFuckingAccounts/comments/o6id82/some_particularly_insidious_bots/

I could write more but I feel l like this is all kind of a waste of time anyway - I am probably just hanging onto some nostalgic feeling of what reddit used to be. But I'm sure I'm not the only one. Anyway thanks for letting us vent.

edit: Awesome, thanks for reaching out and asking for input and then not responding to anyone. This is the 3rd or 4th time I've written up a super long post to staff, trying to be thoughtful and constructive, and got no acknowledgement anyone even read it. Very encouraging! 🙄

Comment by [deleted] at 23/06/2021 at 20:21 UTC

41 upvotes, 2 direct replies

[deleted]

Comment by [deleted] at 23/06/2021 at 20:20 UTC

65 upvotes, 3 direct replies

you can say fuck on the internet

Comment by [deleted] at 23/06/2021 at 20:23 UTC

21 upvotes, 1 direct replies

[deleted]

Comment by ScamWatchReporter at 23/06/2021 at 21:16 UTC

31 upvotes, 2 direct replies

Make it harder to create accounts. It's way too easy

Comment by SiruX21 at 23/06/2021 at 20:21 UTC

13 upvotes, 1 direct replies

I find it funny these spammers even target /r/GeForceNOW, a subreddit for some video games lol. Our new account filter though almost always catches the posts so that's good

Comment by darknep at 23/06/2021 at 20:22 UTC

18 upvotes, 2 direct replies

FUCK SPAMMERS

Comment by Femilip at 23/06/2021 at 22:18 UTC

9 upvotes, 0 direct replies

Thank you for recognizing it is a problem. r/Orlando (lol?) Got hit by massive NSFW spam the other day and it was....Something.

Comment by ThaddeusJP at 23/06/2021 at 23:55 UTC

16 upvotes, 1 direct replies

37M accounts between January and March of this year.

so 89 days..... 415,700 accounts a day? You're banning, on avg 415k accounts a DAY?

THAT IS INSANE

Comment by Kvothealar at 23/06/2021 at 21:03 UTC

9 upvotes, 0 direct replies

As someone who moderates two different NON NSFW subs that are both targeted by these NSFW bots for some reason, thank you.

Comment by gives-out-hugs at 24/06/2021 at 15:41 UTC

7 upvotes, 1 direct replies

I know at least two instances where i followed the pastes to the final site it was a mega download for an exe file which i examined in a sandbox to find it did in fact download images, but also a miner that ran in the background

it would be interesting to find out if the bots are all using the same proxies to connect and if pressure could be put upon those service providers to stop handling those customers

black hole them, go after them from every step of the way, alert the service providers you find and if they don't do anything, reddit stops accepting traffic from those providers, cutting off ALL of their customers

Comment by mbeck810 at 24/06/2021 at 13:56 UTC

6 upvotes, 1 direct replies

/u/redtaboo

I created a bot that is relatively successful at removing the leakgirls spam. Unfortunately, the rules are very specific to our subreddit and use some statistical evaluation.

However, I see one way how to strike a strong blow to the spammers: make the automod more powerful. Admins have to set the rules that are valid globally, but particular subreddits can fight spam in a more tailored way.

Not every community has moderators that could develop their own bot, but custom bots could be partially replaced if the automod is more versatile. For example, one of the automod conditions is the number of reports, but it cannot be filtered by the type of the reports. I can imagine that smaller subreddits could set a lower threshold for removals if they can bind it directly to the spam reports. If there are more options the moderators could contribute to the joint effort to fight the spammers.

Comment by UnacceptableUse at 25/06/2021 at 13:39 UTC

5 upvotes, 0 direct replies

I'm very surprised how far this guy has taken this. Considering how incredibly easy it was to find his details online I'm surprised reddit has not taken this as a legal matter yet

Comment by LG03 at 23/06/2021 at 20:50 UTC

12 upvotes, 3 direct replies

Why not take one of the most basic measures that's been in use for decades on ancient internet forums?

*Require email verification.**

Every single one of the accounts that hit my subs was an unverified account less than a day old. You guys allow this level of spam at the most basic level by making it trivial to generate and use accounts in large numbers.

Comment by furrythrowawayaccoun at 24/06/2021 at 05:28 UTC

5 upvotes, 0 direct replies

Our subreddit has /model/ in the name (but isn't related to fashion models) and oh boyy, did I enjoy waking up to 50 spam or hwat

Comment by Halaku at 23/06/2021 at 21:11 UTC

8 upvotes, 2 direct replies

This might be me talking out my bum, but can't Reddit set up a system where if **X** number of posts in **Y** timeframe is spamming domain **Z**, domain **Z** is blacklisted until an employee can look at it personally?

If I'm reading the chart correctly, y'all were at over half a million leakgirl accounts banned in the first two weeks of May alone. If leakgirls.com was added to the sitewide blacklist once a certain criteria was reached, no one else would have encountered leakgirls spam from mid-May onward, and all the bots would have been just screaming into the Void until such time as Reddit could decide if leakgirls content would be allowed again.

Comment by chopsuwe at 24/06/2021 at 00:21 UTC*

8 upvotes, 0 direct replies

Content removed in protest of Reddit treatment of users, moderators, the visually impaired community and 3rd party app developers.

If you've been living under a rock for the past few weeks: Reddit abruptly announced[1] they would be charging astronomically overpriced API fees to 3rd party apps, cutting off mod tools. Worse, blind redditors & blind mods (including mods of r/Blind and similar communities) will no longer have access[2] to resources that are desperately needed in the disabled community.

1: https://www.reddit.com/r/apolloapp/comments/13ws4w3/had_a_call_with_reddit_to_discuss_pricing_bad/

2: https://www.reddit.com/r/Blind/comments/14ds81l/rblinds_meetings_with_reddit_and_the_current/

Removal of 3rd party apps

Moderators all across Reddit rely on third party apps to keep subreddit safe from spam, scammers and to keep the subs on topic. Despite Reddit’s very public claim that "moderation tools will not be impacted", this could not be further from the truth despite 5+ years of promises from Reddit. Toolbox in particular is a browser extension that adds a huge amount of moderation features that quite simply do not exist on any version of Reddit - mobile, desktop (new) or desktop (old). Without Toolbox, the ability to moderate efficiently is gone. Toolbox is effectively dead[3].

3: https://www.reddit.com/r/creesch/comments/14fxzr4/so_long_and_thanks_for_all_the_fish/

All of the current 3rd party apps are either closing or will not be updated. With less moderation you will see more spam (OnlyFans, crypto, etc.) and more low quality content. Your casual experience will be hindered.

Comment by StormTheParade at 23/06/2021 at 21:48 UTC

8 upvotes, 0 direct replies

just wanted to say thank you and the other admins for the work they're putting in for this issue. I've noticed the spam traffic dying down in my subreddit and honestly it's a relief.

Comment by BlatantConservative at 23/06/2021 at 23:10 UTC

7 upvotes, 0 direct replies

Is this an update solely about leakgirls spammers, or are you also referring to the NameName types which have been reposting content and comments and then selling those accounts?

Comment by BuckRowdy at 24/06/2021 at 04:57 UTC

3 upvotes, 0 direct replies

The other day I had to explain to a coworker why I had a nude image pop up on my phone. I had gotten a mod notification of a reported post in r/serialkillers and I tapped it. A leakgirls image popped up and I was like, uh that's some spam from this um website I had to tell someone about, lol.

Comment by Bazzatron at 24/06/2021 at 10:18 UTC

3 upvotes, 0 direct replies

Great post.

I would really love to get something like this regularly from you guys. You post only when shit and fan seem to have met in spectacular fashion.

Any chance we could get like a monthly or even quarterly post just to let us know what's going on?

That chart is bananas. Maybe r/dataisbeautiful would like that...!

Comment by solutioneering at 23/06/2021 at 21:19 UTC

4 upvotes, 0 direct replies

I've noticed that spam has gotten worse on my email too (gmail) and on phone calls I'm receiving -- it seems like the SPAM industry has recently gotten quite a bit more sophisticated and is beating more of the traditional blockers in place across platforms. And yeah, it's super annoying.