Script inserts in Help Center search

Question

We keep getting spam/malicious requests on our Help Center by people trying to insert scripts. This also happens on our messenger. On the messenger, we also had visitors trying to attach dodgy files to chats. We had to disable attachments for everyone, since this setting seems to be global and cannot be enabled for just users (very unhelpful). So far, the weird script inserts don’t seem to do anything, but I was wondering if anyone else has this issue as well, and what, if anything, you’re doing about it.

Eden · Accepted Answer

Hi @Jana👋 Eden from the support engineer team here.Requests like this in the Help Center search are likely a bot hitting your public Help Center. There should be no security risk here since in cases like this, it is Intercom’s infrastructure that the bot would be trying to hit and Intercom already has protections in place in order to prevent these type of attacks.In regards to being able to disable attachments for only a specific people type, I can see how that would be useful-- this is a great featurerequest for the product team!👍

Reply

Join the Intercom Community 🎉

Intercom Customers and Employees

Login to the community

Intercom Customers and Employees

Scanning file for viruses.

This file cannot be downloaded