maybe?, but wihy others didn’t get hacked at the too?, maybe was social engineering, or the admin got their credentials compromised, we can’t be sure yet
Others did get hacked, or are vulnerable to it, but aren’t big enough targets?
Beehaw is closed, so they would have had to have an existing account to exploit the same bug (or go through something like Kbin), and Lemmy.world is the biggest Lemmy instance.
Definitely looks like a hack. I’d imagine the code has an exploit that someone found
It was an admin account that was compromised. No 2FA was required.
maybe?, but wihy others didn’t get hacked at the too?, maybe was social engineering, or the admin got their credentials compromised, we can’t be sure yet
Also just because you’ve installed an instance and it works doesn’t mean job done. Could’ve been simply settings.
Others did get hacked, or are vulnerable to it, but aren’t big enough targets?
Beehaw is closed, so they would have had to have an existing account to exploit the same bug (or go through something like Kbin), and Lemmy.world is the biggest Lemmy instance.
Unfortunate if true. Although it is also possible an admin’s account was compromised. Would be far less worrying.
It was a compromised admin. https://kbin.social/m/main@lemmy.ca/t/168212/Lemmy-world-is-compromised
deleted by creator