henfredemars to Discussions related to Infosec.pubEnglish · 1 year ago

PSA: Lemmy.world was compromised!

174

PSA: Lemmy.world was compromised!

henfredemars to Discussions related to Infosec.pubEnglish · 1 year ago

Discussion from here: https://lemmy.ml/post/1895271

Relevance: Infosec.pub may wish to consider defederation temporarily.

Temporary fix in place, but instances remain vulnerable. Post: https://lemmy.world/post/1290412

UPDATE 2:58 UTC the injected code was removed from the main page, but cleanup efforts are still underway.
UPDATE 3:11 UTC situation appears to be under control, but browse with caution.
UPDATE 3:35 UTC main page exploited again! Website is unsafe.
UPDATE 4:01 UTC reports coming in that other instances are getting owned. One report of comments trying to inject JavaScript into the page.
UPDATE 4:13 UTC XSS vulnerability in page sidebar is reported relationship to the event is unknown.
UPDATE 7:17 UTC Root cause was identified a while ago.

Chat

henfredemarsOP
link
fedilink
English
arrow-up
10·
1 year ago
As of 2:45 UTC it’s still hacked, modified main page to redirect to offensive materials. Discussion claims that other admins are aware of the hack, but the website is still contaminated.
- PhoenixRising@kbin.social
  link
  fedilink
  arrow-up
  2·
  1 year ago
  Yup still hacked.