Comment on Umami is compromised - upgrade immediately
rayboy@lemmy.world 5 days ago
Wow I’m glad I happened to see this here. Thank you for the post. I was just thinking about putting all my services behind a VPN too, I think I’m going to go ahead and put that at the top of the list…
GottaHaveFaith@fedia.io 4 days ago
I don't think a vpn would help here
GraveyardOrbit@lemmy.zip 4 days ago
EncryptKeeper@lemmy.world 4 days ago
Yeah but Umami is an analytics engine power by client side tracking. If it was behind a VPN it would be useless.
GottaHaveFaith@fedia.io 4 days ago
Yes I re-read the cve, I thought it was an issue with an npm package with a cryptominer
frongt@lemmy.zip 4 days ago
Unless it was the software package itself that was compromised.
EncryptKeeper@lemmy.world 4 days ago
It was not