When we opened a short free-access window for Gemini 3 Pro inside LeemerChat, the goal was simple.
I wanted people in Ireland to try a frontier-level model in a clean, fast chat UI without any friction. Within a few days, it became clear that not all the traffic coming in was genuine.
What we saw
LeemerChat uses Google Sign-in only, so normally the signal quality of accounts is high. During the Gemini 3 Pro window, something different happened. A flood of new Google accounts appeared that looked legitimate, but behaved in tightly coordinated ways.
Some accounts acted like small synthetic teams. Others ran the same long datagen-style prompts with the same structure and pacing. Several groups sent high-quality extraction prompts with almost no delay between messages. The load was spread across many accounts to avoid rate limits, and the activity strongly resembled automated research agents or synthetic corporate entities trying to harvest Gemini 3 Pro generations at scale.
This drained inference usage and created traffic patterns that looked nothing like real students, builders or everyday users.
Traffic patterns during the Gemini 3 Pro window
Two distinct behavioral signatures emerged during the access period
Normal usage pattern
- Smooth human-like curve
- Evening peaks
- Natural dips at night
- Typical Irish user behaviour
Synthetic activity spike
- Sharp vertical surges
- Evenly spaced intervals
- No time-of-day variation
- Perfectly regular prompt batches
These graphs represent the change in behavioural patterns detected inside the LeemerChat chat interface when Gemini 3 Pro access opened.
What signalled synthetic activity
Four key behavioral patterns triggered our detection systems
Identical Prompt Structures
Prompts repeated with the same formatting and length.
Zero Delay Interactions
Message intervals measured in milliseconds.
Clustered Gmail Accounts
Many new logins created within minutes of each other.
Distributed Load Pattern
Small bursts across hundreds of accounts to avoid rate limits.
What we changed
Before reopening Gemini 3 Pro access, we integrated Vercel BotID Deep Analysis into both the sign-in flow and the chat interface. BotID gave us a deeper behavioural signal without adding captchas or slowing anyone down.
All Google sign-ins now trigger a BotID check. If the behaviour is non-human, access to chat never unlocks. Inside the chat, Gemini 3 Pro requests require a fresh verification. The client checks periodically, and the backend only processes inference if there is a recent human result.
It still feels completely smooth for real users.
How BotID protects Gemini 3 Pro access
A multi-layered defense system that operates transparently for real users
This entire verification flow happens in milliseconds. Real users experience no friction, while synthetic traffic is blocked before consuming any inference resources.
What happened next
When we quietly reopened the Gemini 3 Pro path with BotID in place, the same coordinated patterns tried to return. This time, they were blocked before any inference was consumed. The chat stayed stable, our usage stayed normal, and real users were never affected.
Once the synthetic traffic realised they were not getting through, the activity faded out quickly.
Final thoughts
This incident showed me how quickly AI platforms are becoming targets for automated actors, synthetic accounts and harvesting pipelines. Even a small lab like LeemerChat can be hit by well organised systems trying to extract high-value output for free.
BotID has allowed us to protect the platform without changing the experience for our community. Ireland deserves simple and reliable access to advanced AI, and keeping it safe and fair is part of that mission.
If you are a real user of LeemerChat, nothing changes for you. The chat remains fast, the models stay available, and your experience stays clean. The only thing that disappears is the synthetic noise trying to extract value from the system.
If you are a real user of LeemerChat, nothing changes for you. The chat remains fast, the models stay available, and your experience stays clean. The only thing that disappears is the synthetic noise trying to extract value from the system.
— Repath Khan
Founder, LeemerChat