FYI!!! In case you start getting re-directed to porn sites.

Maybe the admin got hacked?


edit: lemmy.blahaj.zone has also been hacked. beehaw.org is also down, possibly intentionally by their admins until the issue is fixed.

Post discussing the point of vulnerability: https://lemmy.ml/post/1896249

Github Issue created here: https://github.com/LemmyNet/lemmy-ui/issues/1895

You are viewing a single thread.
View all comments View context
11 points

Oh man, that would be brutal if they are resetting the password and it isn’t kicking the attacker out…

permalink
report
parent
reply
8 points

JWT issue opened 4 days ago: https://github.com/LemmyNet/lemmy/issues/3499

permalink
report
parent
reply
6 points

The issue does say changing the password should kick the user out, but yeah, still not good.

permalink
report
parent
reply
7 points

This issue from 2 weeks ago was the one I was thinking of, it’s worse: https://github.com/LemmyNet/lemmy/issues/3364

permalink
report
parent
reply
12 points

That’s probably what happened here because they did revoke the admin’s access, but it continued.

permalink
report
parent
reply

Fediverse

!fediverse@lemmy.ml

Create post

A community dedicated to fediverse news and discussion.

Fediverse is a portmanteau of “federation” and “universe”.

Getting started on Fediverse;

Community stats

  • 368

    Monthly active users

  • 806

    Posts

  • 12K

    Comments