email addresses are strings, if the website where the registration is being made makes no effort to validate the email address is controlled by the user session registering it, how do you suppose to block it from happening?
Not that I know of; it's rather frustrating when you're constantly receiving some other person's correspondence (in spite of reaching out to them and asking them to update it).
From airline tickets, to bank statements, to collection agencies, to McDonald's HR portal, to HomeDepot invoices. Plz make it stop...