this post was submitted on 10 Jul 2023
476 points (99.2% liked)

Fediverse

17724 readers
104 users here now

A community dedicated to fediverse news and discussion.

Fediverse is a portmanteau of "federation" and "universe".

Getting started on Fediverse;

founded 5 years ago
MODERATORS
deadsuperhero@lemmy.ml
wakest@lemmy.ml
476
PSA: Lemmy.world has been compromised! (Edit: Multiple Instances are down) (lemmy.ml)
submitted 1 year ago* (last edited 1 year ago) by G59@lemmy.ml to c/fediverse@lemmy.ml
209 comments fedilink hide all child comments
 

FYI!!! In case you start getting re-directed to porn sites.

Maybe the admin got hacked?

edit: lemmy.blahaj.zone has also been hacked. beehaw.org is also down, possibly intentionally by their admins until the issue is fixed.

Post discussing the point of vulnerability: https://lemmy.ml/post/1896249

Github Issue created here: https://github.com/LemmyNet/lemmy-ui/issues/1895

(page 3) 50 comments
sorted by: hot top controversial new old
[–] teft@sh.itjust.works 6 points 1 year ago* (last edited 1 year ago) (1 children)

Looked like the admin u/MichelleG over there got hacked. That account posted a couple stickied posts and then all the css and links started changing on the site.

[–] redcalcium@c.calciumlabs.com 3 points 1 year ago

You would think an admin account would have 2fa enabled (unless the hack was due to a security issue in lemmy itself, but it doesn't seem to be the case).

[–] Roggie@lemmy.zip 6 points 1 year ago

Just clicked into Lenny.world and saw “site has been seized by Reddit for copyright infringement “

[–] bootyberrypancakes@lemmywinks.xyz 5 points 1 year ago

Yikes, hope they can find and disclose whatever they used to compromise an admin account.

[–] Slopz@lemmy.ml 5 points 1 year ago (2 children)

I really hope they have backups in place.

load more comments (2 replies)
[–] hawkwind@lemmy.management 5 points 1 year ago

F

[–] chunky@aussie.zone 4 points 1 year ago

Ah, crap...

[–] zerbey@infosec.pub 3 points 1 year ago

Oof. Oh well, at least they’re getting recognized I guess.

[–] Gamers_Mate@lemmy.ml 3 points 1 year ago

From the title I was expecting it to be compromised by meta. Not actually hacked.

[–] AndrewZabar@beehaw.org 3 points 1 year ago

It’s fine now.

load more comments
view more: ‹ prev next ›