still having this problem, at least we are aware that this could happen down the road as an early warning
this post was submitted on 10 Jul 2023
184 points (98.9% liked)
Lemmy.world Support
3278 readers
17 users here now
Lemmy.world Support
Welcome to the official Lemmy.world Support community! Post your issues or questions about Lemmy.world here.
This community is for issues related to the Lemmy World instance only. For Lemmy software requests or bug reports, please go to the Lemmy github page.
This community is subject to the rules defined here for lemmy.world.
To open a support ticket
You can also DM https://lemmy.world/u/lwreport or email [email protected] (PGP Supported) if you need to reach our directly to the admin team.
Follow us for server news ๐
Outages ๐ฅ
https://status.lemmy.world
founded 2 years ago
MODERATORS
Surely 2FA must have been off for that to happen, if so that doesn't inspire confidence...
It was circumvented hours prior to the attack. I tried activating but there's no feedback
Personally I don't use 2fa even though I want to. I use bitwarden for everything and I have no way to set up 2fa inside bitwarden. I can set it up through authy but prefer not to.
I have 2fa working in bitwarden for some places. I do pay for a subscription though, not sure if that makes a difference
load more comments
(1 replies)
Yea for your average user I can get that, but this was an admin account. Sounds like 2FA was already compromised so will be interesting to understand how that happened in the first place.
It doesn't even have to be 2FA. Linux Tech Tips got their channels hacked through a malware that targeted a user's session tokens that keep the user logged in to their Youtube channels.
load more comments
(4 replies)
That's concerning.