Published on bearblog

YouTube Comment Spam and the Linking Non-Link

As somebody who quite often scrolls down to the comments section on YouTube (for my sins), I’m often faced with the innovative tactics that spammers use to get their comments through Google’s automated filtering and detection systems.

One method that’s somehow persisted for a few years is the linking non-link. YouTube doesn’t like comments with links in them and will often silently hide or sometimes outright refuse them. But the link-detection algorithm used in spam filtering isn’t the same one that’s used in the frontend to convert textual links into clickable hyperlinks!

So spammers craft their comments with unusual TLDs and mixed into normal-looking text. They aren’t detected as links by the filter, but their marks can still click on them as normal! This has been going on for quite a while with different iterations of TLDs and filters, but somehow Google hasn’t managed to stamp it out quite yet.

Here’s an example (Spanish language) spam comment, where the .uno domain is the bait:

spanish spam comment by a cyrillic account

I often wonder if there’s any real development effort put into spam filtering from the comment side; my guess is that as a centralised platform YouTube puts a lot more emphasis on filtering out spammy accounts. Some of my creator friends often complain about the lack of moderation tools to keep their comment sections clean - beyond deleting comments individually and the “naughty words list” that automatically hides comments there’s not really that much a creator can do.


No comments yet!

To leave a comment, please send it via email here. Comments are licensed CC-BY as with the rest of the site. Your sender name and email address will be published along with the comment, unless you tell me not to.

Articles from other blogs I follow

Piccadilly line trains to call at South Kensington tube station again

Piccadilly line trains will start to call at South Kensington tube station again next week - from Wednesday 1st June following work to replace all five escalators in the station.Read more › This article was published on ianVisits SUPPORT THIS WEBSITE This we…

via ianVisits May 26, 2022

Certified Blockchain Professional - Module 13: Blockchain Project Implementation

As previously discussed, I'm doing the Certified Blockchain Professional course. It is self-directed learning, so I'm going through it at my own pace. In order to consolidate my learning, and help organise my thoughts, I'm blogging about my re…

via Terence Eden’s Blog May 26, 2022

Google has been DDoSing SourceHut for over a year

Just now, I took a look at the HTTP logs on Of the past 100,000 HTTP requests received by (representing about 2½ hours of logs), 4,774 have been requested by GoModuleProxy — 5% of all traffic. And their requests are not cheap: every one …

via Drew DeVault's blog May 25, 2022

Generated by openring

All posts on bearblog are licensed as CC-BY rss