At a minimum they had some hacked web UI mayhem going on along with at least 1 admin account compromised…now they are in an at least partially down state. Might be worth alerting the Powers That Be to see if they want to offer assistance and if any measures should be taken to protect servers federated with it.

  • darrsil@beehaw.orgEnglish
    1·
    1 year ago

    I’m surprised I haven’t seen more posts yet about this. A rogue or compromised admin put JavaScript redirects on Lemmy.world as well as changed the name and some other things. The other admins removed the compromised admin, but then about 30 minutes later they were reinstated and started wreaking havoc again. The instance eventually went offline completely.

  • spitz@lemmy.mlEnglish
    0·
    1 year ago

    I deleted my .world account yesterday. Sorry if it’s a stupid question, but do I have to do anything about that? If so, what?

    • OtakuAltair@lemm.eeEnglish
      11·
      1 year ago

      You ruined everything! 😡

      No lmao an admin account got hacked it seems

      • spitz@lemmy.mlEnglish
        0·
        1 year ago

        I got that much, but I don’t understand anything else. JavaScript injection? Is someone going to steal my deleted account or is that not possible?

        • ugh@lemm.eeEnglish
          1·
          1 year ago

          From what I’ve read, links were redirecting to “shock” websites. It’s more of an old-internet Rick roll, but with gore type content instead of a silly music video. I don’t think we have to worry about data, but we’ll learn more in the next hour(s).

            • TonyTonyChopper@mander.xyzEnglish
              01·
              1 year ago

              On another post they showed it was stealing browser cookies, so your login information for any site you’re logged into could be compromised. Definitely not a prank