Unwanted Registrant on Training Session

Clinton Vadnais · ‎11-09-2020

I was just alerted to an unexpected and unwanted registrant for a Training session. The user had created their first Training session and had set to automatically approve registrations. It was listed on the public calendar for my enterprise. The registrant was not recognized. The name doesn't hit in Google nor does the email. They both appear to be fake. I showed the user how to manually reject the registrant. The concerning thing is that this user hadn't given out the URL to the Training. They were manually adding the registrants on their own using another mechanism. So it appears as though someone (bot) was scouring ???.webex.com prefixes and attempting to join Training sessions. Has anyone else run into this?

DerekD · ‎11-11-2020

When you say...

@Clinton Vadnais wrote:
...It was listed on the public calendar for my enterprise....

Are you talking about the listing for Training Center sessions listed at <https://sitename.webex.com/mw3300/mywebex/default.do?siteurl=sitename%service=7> where you need to replace sitename with yours? (You can navigate to this by going to <https://sitename.webex.com> and then expanding the "sandwich" - three line menu in the upper left and selecting "Webex Training" followed by "List of Sessions".)

If so, that page is open to the public and doesn't require any login. So bots can scrape it and as you said register if auto-reg is enabled. That is why the "public" listing of sessions isn't recommended unless you understand the security ramifications.