maegul@hachyderm.io 1 year ago
So, lemmy.world is back up and running.
It seems (mostly?) sanitised from the hacker's defacement and is running (mostly) as though nothing has happened (which is perhaps alarming?).
Maybe avoid visiting if you have an account there (until things are verified) as it seems part of their hack was to scrape JWTs/cookies through a JS/scripting injection. (See, eg https://lemmy.sdf.org/comment/850269)
maegul@hachyderm.io 1 year ago
@fediversenews
ruud (woke up and) has reported on the incident: https://lemmy.world/post/1290412
Seems that there was a vulnerability which has been patched and cleaned up. Patch is yet to be merged and pushed to all instances apparently.
Overall this incident has both positives and negatives. It’s not good that this could have happened. I’m not clear on the root cause so others can attest.
Positively, lemmy is an active platform, attracting attacks and devs/admins patching and maintaining the space.