this post was submitted on 10 Jul 2023
114 points (97.5% liked)

Summit

735 readers
21 users here now

Community to discuss Summit, a Lemmy reader for Android.

App (Play Store): https://play.google.com/store/apps/details?id=com.idunnololz.summit

APK: https://github.com/idunnololz/summit-for-lemmy/releases

Patreon: https://patreon.com/SummitforLemmy

Ko-Fi: https://ko-fi.com/summitforlemmy

Website: https://summit.idunnololz.com/

founded 1 year ago
MODERATORS
[email protected]
114
PSA: Please sign out and sign back in (lemmy.world)
submitted 1 year ago by [email protected] to c/[email protected]
5 comments fedilink hide all child comments
 

There was a vulnerability attack on certain Lemmy instances. As part of the resolution to the attack, all accounts have been automatically signed out. The client currently does not handle this gracefully so you will need to manually sign out and sign back in. I am working on a fix for this.

Thank you.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 22 points 1 year ago (1 children)

I could be wrong but I think the attack circumvents this. As the attacker would receive a users JWT token the 2FA in the login process is moot. Still better to have it enabled in general tho.

[โ€“] [email protected] 1 points 1 year ago

All JWT tokens should have been invalidated by the server creators. Those tokens should no longer be usable. It's still possible actions were taken using your account while the server was compromised. See https://lemmy.world/post/1290412