There was a vulnerability attack on certain Lemmy instances. As part of the resolution to the attack, all accounts have been automatically signed out. The client currently does not handle this gracefully so you will need to manually sign out and sign back in. I am working on a fix for this.

Thank you.

  • dooger_chogany@lemmy.world
    link
    fedilink
    arrow-up
    22
    ·
    1 year ago

    I could be wrong but I think the attack circumvents this. As the attacker would receive a users JWT token the 2FA in the login process is moot. Still better to have it enabled in general tho.