We have been running Academy for a while and it is a really great theme. The problem we have now is spam user registrations.
I have enabled Captcha on the registration form, using Cartpauj-Registration-Captcha, Ithemes security, I have confirmation emails activated. I tried using stop-spammers, changed the login URL, everything I’ve read in the support forums so far.
Each time I try a new solution, it works for about a day and then they come back. The bots have even started clicking on the activation links in the emails by the looks of it.
Is there any advice you can offer to stop spam signups?
We’ve updated to WordPress version 4.7.3 so it shouldn’t be the problem. We think the registration is happening on the front-end because there is a custom field in template-register.php that gets filled and sent to the to us in the new user registration email.
I am sending WP access to you now, Subject line is “RE Spam Signups – Temporary WP Access”