481
PSA: Lemmy.world has been compromised! (Edit: Multiple Instances are down) (lemmy.ml)
submitted 1 year ago* (last edited 1 year ago) by G59@lemmy.ml to c/fediverse@lemmy.ml
244 comments fedilink hide all child comments

FYI!!! In case you start getting re-directed to porn sites.

Maybe the admin got hacked?

edit: lemmy.blahaj.zone has also been hacked. beehaw.org is also down, possibly intentionally by their admins until the issue is fixed.

Post discussing the point of vulnerability: https://lemmy.ml/post/1896249

Github Issue created here: https://github.com/LemmyNet/lemmy-ui/issues/1895

you are viewing a single comment's thread
view the rest of the comments
[-] ebits21@lemmy.ca 7 points 1 year ago

Mostly a risk on initial setup.

I’ve been waiting a bit for it to stabilize and just using huge random passwords

[-] Zetaphor@zemmy.cc 5 points 1 year ago

If you're using a password manager you'd be doing this for every site and without even having to think about it. Bitwarden is a great choice.

[-] Cube6392@beehaw.org 5 points 1 year ago

I like KeePass. Bitwarden currently has an nginx exposure in the Dockerfile published in their git repo (may have been fixed since a couple of days ago). That said, I used Bitwarden for many years and switched out of an abundance of paranoia, and am definitively not recommending against it. Just basically use one of the following:

  • Bitwarden
  • KeePass
  • 1password

And stay far the fuck away from LastPass

load more comments (5 replies)
load more comments (6 replies)
load more comments (6 replies)
this post was submitted on 10 Jul 2023
481 points (99.2% liked)

Fediverse

17508 readers
96 users here now

A community dedicated to fediverse news and discussion.

Fediverse is a portmanteau of "federation" and "universe".

Getting started on Fediverse;

founded 4 years ago
MODERATORS
deadsuperhero@lemmy.ml
wakest@lemmy.ml