The instances being used are
- lemmy.doesnotexist.club
- chinese.lol
Here is an example of the coordinated downvoting https://hackertalks.com/post/8692093
Of course its a controversial user who got someone angry enough to automated downvoting @[email protected]
But you can see every post they make gets 53ish downvotes from these two instances, plus some organic ones after a few hours.
Current downvoting Accounts
bot-list
[email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]
A individual user airing their personal biases and manipulating lemmy isn’t good for the community, regardless of how you feel about their target. This is a really bad thing ™
Hi, I’m the admin for chinese.lol, and I just realized that my instance was compromised by those bots, as there is no verification required during registration. Let me check the database and work on banning those suspicious accounts. Also, could you suggest any methods to prevent these bot attacks and stop them from registering in the future?
Welcome! Join Lemmy world defense HQ matrix room
Don’t have automatic registration approval, require manual approval
Keep an eye on accounts that never post and only vote, especially if they use the same ip or come from a vpn
Thanks! Could you please let me know what to search for to find the Lemmy world defense HQ matrix room? I couldn’t find it now.
Additionally, I will current disable chinese.lol by applying a 0 rate limit while I take some time to investigate and remove those bots. Once I’ve cleaned it up, I’ll come back and apologize to those who were affected by the downvoting caused by the bots. I never expected someone would hack my instance to mass-register bots and cause these issues. I’m really sorry for the inconvenience this has caused.
I’ve just disabled federation for my instance. Thanks again for bringing this issue to my attention, and I’m really sorry for the inconvenience it has caused. I’ll make sure to clear up all the bots before re-enabling federation.