this post was submitted on 10 Jul 2023
94 points (99.0% liked)

Lemmy NSFW

11805 readers
1 users here now

Updates about lemmynsfw.com

founded 2 years ago
MODERATORS
yay@lemmynsfw.com
MikeyMongol@lemmynsfw.com
gavi@lemmynsfw.com
Limeey@lemmynsfw.com
bobbiguy2122@lemmynsfw.com
metaconnoisseur@lemmynsfw.com
94
Temporarily defederated from lemmy.world (and lemmy.blahaj.zone) as they seem to be compromised (lemmynsfw.com)
submitted 2 years ago* (last edited 2 years ago) by gavi@lemmynsfw.com to c/lemmynsfw@lemmynsfw.com
17 comments fedilink hide all child comments
 

We quietly defederated temporarily earlier because lemmy.world seemed to be compromised earlier in some way, but then it was fixed. Now it's happened again. Unsure what is going on over there but there isn't much use speculating. They have been dealing with weird redirects to shock sites like lemonparty (throwback). Whoever has compromised them seems to have some early 2010s internet sense of humor I guess.

Anyway, once they have things under control and an announcement is made we will refederate ASAP. For the time being, please avoid going to their homepage for the time being as we have no idea what the nature of the compromise of their site is and to what extent.

EDIT: seems lemmy.blahaj.zone just was as well. :(

top 15 comments
sorted by: hot top controversial new old
[–] Rengoku@lemmynsfw.com 11 points 2 years ago (1 children)

Lemmy.world has been timeouting like crazy for me as well. Sigh.

[–] gavi@lemmynsfw.com 9 points 2 years ago

I am hopeful their site admins will get it under control and be transparent about what happened when they are able to. It's unfortunate though that it's happening in the first place.

[–] OreganoChampion@sh.itjust.works 9 points 2 years ago (1 children)

Admin alt of one of the mods of Mildly Infuriating.

It may have something to do with this message I got:

If I could hazard a guess. Maybe a login token theft, so the hacker has access to an admins account or multiple.

[–] gavi@lemmynsfw.com 4 points 2 years ago (1 children)

It seems to have spread to lemmy.blahaj.zone. Will add them if more come :( This sucks man.

[–] jack@lemmynsfw.com 2 points 2 years ago

I was on blahaj and didn't notice the redirects? What are you seeing or hearing?

[–] DelvianSeek@lemmynsfw.com 5 points 2 years ago

Thanks for the info!

[–] Evoke3626@lemmy.fmhy.ml 4 points 2 years ago (1 children)

Wait really? Aren’t they one of the biggest instances?! Shocking and very concerning

[–] NaibofTabr 1 points 2 years ago (1 children)

Aren’t they one of the biggest instances?!

Which makes them a bigger target.

[–] Evoke3626@lemmy.fmhy.ml 2 points 2 years ago

Just surprised me. I’d figure the larger mainstream ones would generally practice better security.

[–] eros90@lemmynsfw.com 2 points 2 years ago (2 children)

I have an account signed up there. Should I be worried? How does it affect the user?

[–] gavi@lemmynsfw.com 2 points 2 years ago

We are unsure at this time. Just change any passwords you have that may be the same as what is on that instance just in case.

[–] wowow@lemmynsfw.com 1 points 2 years ago

The attackers would've been able to get the token used to login but not your password from a vulnerability with custom emoji. Lemmy.world rotated their JWT secret so all logins are invalidated and the vulnerability has been patched. Should be just fine.

[–] Candelestine@lemmy.ca 2 points 2 years ago* (last edited 2 years ago)

XSS vulnerability on the sidebar. There's some threads starting to pop up about it.

[–] NaibofTabr 2 points 2 years ago

It just occurred to me while reading this that this is one of the benefits of the federated system - resiliency. If something like this had happened on reddit the entire system would be down until repaired and recovered, but with Lemmy the unaffected instances can disconnect until the issue is resolved, and then reconnect after, while also observing the problem and taking steps to fix the vulnerability on their own systems.

[–] th3dogcowNSFW@lemmynsfw.com 2 points 2 years ago

It looks like they’ve got things under control now. see rudd's post here

load more comments
view more: next ›