I receive lots of spam sign ups (gmail, yahoo, aol accounts) that never get activated. I automatically clean those up after a few days.
I have no captcha because I don't like them from a UX perspective. My assumption was that because of the double opt-in process I don't need one.
But now as I get so many spam sign ups I'm wondering if I'm missing something. What's the motivation from a spammers point of view? Do they check for security vulnerabilities this way? What kind of goal do they try to achieve?
The newsletter form is on the bottom of this page: https://asylumsquare.com