this post was submitted on 12 Oct 2023
838 points (98.5% liked)

Lemmy.World Announcements

29156 readers
5 users here now

This Community is intended for posts about the Lemmy.world server by the admins.

Follow us for server news ๐Ÿ˜

Outages ๐Ÿ”ฅ

https://status.lemmy.world

For support with issues at Lemmy.world, go to the Lemmy.world Support community.

Support e-mail

Any support requests are best sent to [email protected] e-mail.

Report contact

Donations ๐Ÿ’—

If you would like to make a donation to support the cost of running this platform, please do so at the following donation URLs.

If you can, please use / switch to Ko-Fi, it has the lowest fees for us

Ko-Fi (Donate)

Bunq (Donate)

Open Collective backers and sponsors

Patreon

Join the team

founded 2 years ago
MODERATORS
838
Phishing Mails (lemmy.world)
submitted 1 year ago* (last edited 1 year ago) by lwadmin to c/lemmyworld
 

This will be a quick post. We have received a phishing mail to our [email protected] mail address telling that they are "lemmy.world Security Team", telling that they will "disconnect" your account from our instance. This is ofc, not us. Do not fall for it! The attached image is how the mail looks like.

~Lemmy World Team.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] dreadedsemi 29 points 1 year ago (3 children)

It's weird that they target Lemmy, what would they get? Access to account that shitposts? Only important accounts are admin, even communities are small here

[โ€“] [email protected] 34 points 1 year ago (1 children)

My guess is they did not. It doesn't appear to be targeting Lemmy, it's just a generic spam email.

Note the email was received at the [email protected] address. The email most likely got the [email protected] email address, took the domain from it, lemmy.world, and put this in their spam generator. The email doesn't even make sense, because it says they need to install an app for their mail but it's a custom domain.

If you imagine most of the emails on their spam list are @gmail.com or @outlook.com, etc, then the email looks like it is coming from the gmail.com security team or the outlook.com security team. The email no longer makes sense when you have a custom domain.

[โ€“] dreadedsemi 2 points 1 year ago

I see. That makes perfect sense.

[โ€“] [email protected] 23 points 1 year ago

It's not targeted at Lemmy. This phishing mail simply assumes that lemmy.world is an email provider, and that [email protected] is a registered email account there.

[โ€“] Dremor 4 points 1 year ago (2 children)
[โ€“] [email protected] 6 points 1 year ago

Loads of instances don't require an email to sign up so that doesn't make any sense.

[โ€“] [email protected] 4 points 1 year ago

I guess we've made it mainstream if that's a consideration