this post was submitted on 10 Jul 2023
64 points (100.0% liked)
Fediverse
8 readers
2 users here now
This magazine is dedicated to discussions on the federated social networking ecosystem, which includes decentralized and open-source social media platforms. Whether you are a user, developer, or simply interested in the concept of decentralized social media, this is the place for you. Here you can share your knowledge, ask questions, and engage in discussions on topics such as the benefits and challenges of decentralized social media, new and existing federated platforms, and more. From the latest developments and trends to ethical considerations and the future of federated social media, this category covers a wide range of topics related to the Fediverse.
founded 2 years ago
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Definitely looks like a hack. I'd imagine the code has an exploit that someone found
It was an admin account that was compromised. No 2FA was required.
maybe?, but wihy others didn't get hacked at the too?, maybe was social engineering, or the admin got their credentials compromised, we can't be sure yet
Also just because you've installed an instance and it works doesn't mean job done. Could've been simply settings.
Others did get hacked, or are vulnerable to it, but aren't big enough targets?
Beehaw is closed, so they would have had to have an existing account to exploit the same bug (or go through something like Kbin), and Lemmy.world is the biggest Lemmy instance.
Unfortunate if true. Although it is also possible an admin's account was compromised. Would be far less worrying.
It was a compromised admin. https://kbin.social/m/[email protected]/t/168212/Lemmy-world-is-compromised