The free Spambotcheck component will stop almost all fake registrations.

You can see my more detailed suggestion in this thread

I am really sorry for the delay of this reply as it is actually a public day off for us here. Also, you want to check the ACL for EasyBlog too! Ensure that you only allow user groups you trust to write and publish posts

Thank you I will try the Spambotcheck component and set the ACL as required.

Thanks for updating

Yeah we have had an issue with several sites of ours with Easyblog on them being hit with spam posts and some of them, unfortunately, sending out the notifications to subscribers!

The ability to do this seemed to be down to the fact that REGISTERED users, by default, have the ability to create and publish blog posts so if the site config is also set to allow user registration and for the approval to come from the registrant rather than a site admin then technically a spammer can register themselves and create a post (even if there are no menu links etc to the create post pages).

What I've done now is set the ACL to not allow Registered users to post and also to turn off user registration by default as well as setting the account approval to ADMIN rather than USER. This obviously only works for sites which don't need registered users to be posting.

Hello Simon,

Thank you for your kind feedback. For your information, we already address this issue in easyblog 5 where newly fresh install will automatically make registered user group not be able to post blog on the site by default. You can always enable the option back from the ACL settings afterwards