First we have lots of tools in place to prevent bot styled spam from both our contact forms and the comment system. Because of this, automated spam is very low. Manually created spam, entered by humans will never be blocked because there is no way to know a legit commenter from a person just entering a self-serving link. However, all comments can be moderated to make sure no unwanted ones make it to the live site.
Are a little different. We have security features in place both at the programming level and the server level, as well as spam protection in the user and blog creation process. However hacking does still happen and the only real solution is to have a great backup system so you can scale back to before the hack happened. We backup our entire server, our file structure, and our database every day.
Reducing Comment Spam
If you see a lot of spam comments coming in suddenly, there are a few steps you can take to help make things better.
First, look in the admin menu and click on Comments. You should see a list of all comments, with pending comments in yellow, like the image below:
In the left section you will notice, the commenter's name, under that the website they entered and their email. Lastly you can see the IP address they commented from.
In the middle column, you see the text of the comment itself. A lot of times spam comments are just rambling generic text or something simple like "Hey, Great post!". Other times you will see a comment filled with words that are obvious spam words, like medical terms and obscenity.
You can use all this information to start blocking spam.
Look at the website addresses, email addresses and Ip addresses left with comments. If you see several from the same IP, email or site, start copying those into a text file and we can add them to a moderation list in the next step.
For IP addresses, you also want to look at IP ranges. For example in the following list of IP addresses, you will notice some patterns:
How to block IP's, Emails, and Websites