WARNING: Phishing attack on LJ
This is a translation of this entry by igrick.
LJ has caught another wave of phishing. This time it works in a friends list: you open your friends page and see a login form. If you see that login form, please ignore it.
How does it work? One of the entries in your flist contains a code imitating LJ login page. If a user enters their login and password into this form, his journal will acquire the same post and their friends will see the login form on their friends page. And so on.
For those who had already fallen prey to this: please contact Abuse Team here. Your access and all data that had been lost due to the attack will be restored.
We're solving this problem at this moment, but it will take some time, so some users might still be affected. Please exercise caution.
UPDATE: The issue has been localized. So if your journal had the phishing post and your password had been compromised, you can access your journal and delete the post (it will be the last post made and you haven't posted this). Or you can simply wait for all those posts to be suspended.
LJ has caught another wave of phishing. This time it works in a friends list: you open your friends page and see a login form. If you see that login form, please ignore it.
How does it work? One of the entries in your flist contains a code imitating LJ login page. If a user enters their login and password into this form, his journal will acquire the same post and their friends will see the login form on their friends page. And so on.
For those who had already fallen prey to this: please contact Abuse Team here. Your access and all data that had been lost due to the attack will be restored.
We're solving this problem at this moment, but it will take some time, so some users might still be affected. Please exercise caution.
UPDATE: The issue has been localized. So if your journal had the phishing post and your password had been compromised, you can access your journal and delete the post (it will be the last post made and you haven't posted this). Or you can simply wait for all those posts to be suspended.