Went there and got some… less than savory images. Do not recommend going there.

Did it get hacked or smth?

  • techno156@kbin.social
    link
    fedilink
    arrow-up
    3
    ·
    1 year ago

    Yes. They got hacked. An admin account got compromised, and the hackers exploited a bug in Lemmy-UI (the web site) that let them do things like redirect users to another site that let them run Javscript. It seems to have let them collect some user tokens from accounts, and access an admin account that way.

    • NotSteve_@kbin.social
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      If there’s a bug in the UI that allows this to happen, there’s a bug in the backend too. It looks like they’re working on both though