Hear, hear!
Some spammers found a sneaky way to bypass Discourse security. But not for long. Here’s what community moderators need to watch for:
- New users with proper profile, three legitimate but low quality posts (or AI-generated content) with autobiographer, first like, first emoji, first reply badges
- Next post is longer, seemingly more elaborate, and contains at least two links: one of them is legitimate and one of them is SEO spam.
- The SEO spam link has a short anchor that is hidden next to the legitimate link.
In other words, be watchful about seemingly enthusiastic new users who post short first contributions, and watch out for obfuscated links.
One of the trigger warnings is the discrepancy between email username (at usually some large provider) and the actual username; profile picture looks legit (and was probably stolen from an actual account.)