this post was submitted on 10 Jul 2023
107 points (99.1% liked)

main

1326 readers
1 users here now

Default community for midwest.social. Post questions about the instance or questions you want to ask other users here.

founded 2 years ago
MODERATORS
[email protected]
107
Regarding the recent Lemmy hack *Update* (midwest.social)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
16 comments fedilink hide all child comments
 

In case you're not aware, multiple Lemmy instances suffered hacks recently that allowed the hackers to gain admin privileges and deface the instances and/or redirect users to other sites. Luckily, midwest.social was not a victim of this from what I can tell. To mitigate any more issues I have deleted the single custom emoji that had been uploaded and rotated the JWT which means you will have to log in again on all your devices.

Update: The devs have released 0.18.2 with a security fix for this and I've upgraded to it.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago

Thanks for this. I needed to do this on Jerboa too.