When logging into lemmy.world the banner now says “Israel - ni**a style” (full word unredacted) and it starts linking to lemon party and a bunch of other NSFW sites.
When logging into lemmy.world the banner now says “Israel - ni**a style” (full word unredacted) and it starts linking to lemon party and a bunch of other NSFW sites.
Surely 2FA must have been off for that to happen, if so that doesn’t inspire confidence…
It was circumvented hours prior to the attack. I tried activating but there’s no feedback
Personally I don’t use 2fa even though I want to. I use bitwarden for everything and I have no way to set up 2fa inside bitwarden. I can set it up through authy but prefer not to.
Its $10 a year man come on https://bitwarden.com/pricing/
Narrator voiceover: In today’s lesson @ExcursionInversion learns that the world is not the USA and vice versa.
What’s the price in RMB and do they take payment by WeChat Wallet or Alipay?
Oh, what’s that? You don’t know what any of that even is?
Perhaps you’re not in a position to say “come on” then. Given that the site doesn’t even have i18n for the overwhelming majority of world languages, I’m pretty confident in guessing they don’t support a whole lot of payment options accessible to the bulk of the world as well.
In case you are actually interested. https://bitwarden.com/help/billing-faqs/#q-what-payment-options-do-you-accept-for-customers-outside-the-united-states
So they don’t accept payment in RMB over AliPay or Wechat is what you’re saying?
What. A. Surprise.
Credit cards are incredibly unpopular here: I’ve literally not seen one in use that wasn’t by a tourist in a tourist-oriented shop in 20 years. “Debit card” is so vague it’s almost charming. Paypal isn’t easily available as an option in most of the world. (I, for example, to use Paypal, would have to jump through incredibly time-consuming and expensive hoops to use its ‘letter of credit’ option.) I don’t know what “ACH” is, but I can pretty much guarantee that I can’t pay from my bank account given the currency export restrictions, etc. etc. etc. etc.
So again: today’s lesson was “the world is not the USA and vice versa”.
I have 2fa working in bitwarden for some places. I do pay for a subscription though, not sure if that makes a difference
I use it everywhere but Lemmy because for whatever reason the link to set it up won’t give me a manual code or QR code it forces me to open it in an ap like Authy or Google Auth. Those are just the ones I have installed I’m sure others would work as well.
Yea for your average user I can get that, but this was an admin account. Sounds like 2FA was already compromised so will be interesting to understand how that happened in the first place.
It doesn’t even have to be 2FA. Linux Tech Tips got their channels hacked through a malware that targeted a user’s session tokens that keep the user logged in to their Youtube channels.