Do you have a captcha in place? That’s what I usually use to prevent unwanted form submissions. There’s the obvious Google reCaptcha but also alternatives like hCaptcha. ReCaptcha has also it’s own extra, but it’s not ready for the latest reCaptcha version if I’m not mistaken. For hCaptcha I gave an example how to implement it here.