We use Blesta on our VPSBit Billing System and we're getting a crazy SPAM attack of some sort.
Thousands of tickets, all with gibberish 'Subjects' and the content / body is all the same.
"Muchas gracias. ?Como puedo iniciar sesion?"
Unfortunately I can't make heads or tails of the Blesta ticket system and there are many limitations. The ticket system does not have/user captchas. Also, no IP logging for anonymously opened tickets. Our system is also apparantly now sending out spam as result as Blesta is sending out confirmation emails to all those newly opened tickets.
Managed to insert an IP logger to see if all these tickets were being opened by the same IP or group of IPs. Unfortunately it looks like each ticket is opened by a new IP. Each IP appears to be a public TOR exit node.
Anyone have any idea what the heck this SPAM crap is and how to block it?