3281
Lemmy.world (and some others) were hacked
(lemmy.world)
This Community is intended for posts about the Lemmy.world server by the admins.
For support with issues at Lemmy.world, go to the Lemmy.world Support community.
Any support requests are best sent to info@lemmy.world e-mail.
If you would like to make a donation to support the cost of running this platform, please do so at the following donation URLs.
If you can, please use / switch to Ko-Fi, it has the lowest fees for us
Should I change passwords or no?
No, unless you see posts that you didn't create in your history, you should be fine.
Afaik, there's no way to get your password from the JWT and access to account, right?
Correct, the password is not viewable. But using this exploit a hacker would have access to the settings page of your account and modify password/email address etc.
I think you need the old password to make a new one!
You could change the email and then request a password reset. But yes you're right, that wouldn't work from the settings page! :)
Ah, makes sense
If you have to ask, just change it. It's free and quick, and it's good practice.
Err... no.
Does he have a specific reason to believe his account was compromised?
You seem like the kind of guy that will always tell someone to change their password no matter what. Kind of useless information at that point.
Change it
Done
Would probably be a good idea.