Replit email is hacked

Bug Reports
1

Problem description:
I received an email from notifications@replit.com (not abnormal), but when clicking “View Comment”, this time it did not take me to Replit but to a different page with Replit’s URL. I received several such emails (because I received several comments). It only did it on emails for comments on @Bookie0’s “bounceCSS” and not for comments on @RayhanADev’s “About”.

image
image737×565 69.3 KB

Expected behavior:
It should have taken me to the comment like they have in the past.

Actual behavior:
It took me to a hacked page.

Steps to reproduce:
I can’t guarantee that it will happen to anyone who gets a Replit email, but mine was on a new comment email.

Bug appears at this link:
http://email.mg.replit.com/c/eJxNjEsOgzAMRE9DlshxbAiLLFpV3CMJBtKGjwi9f2FXaTYzem_E6aYlRguW1OD8wBy8Sg4BDWgkQNKo6zYO0IlhttIF4LEiWKb6kD2ns47bomYHZEbPobMwUhTrTcN6DIOwNjZg9Cq7-Tz3UplHhf2Vcvoprf8v907w3LZPErhK2L5rlFgup4-VeTUdUovqcFJEspR3vvBp8Snf9g-yAzxe

Browser/OS/Device:
Firefox on Linux Mint on Lenovo Laptop

2

So, using the F12 inspector, I discovered that this page is from https://letmein.replitfaris.repl.co/. Upon clicking that link I go to an identical page. Therefore, it is my conclusion that either knowingly or unknowingly @replitfaris has become a part of a Replit hacking.

3

its not a hack, it doesn’t look like a replit email.

4

Yes it is. Same address.

image
image1533×509 25.1 KB

See also this answer:
image
image761×290 35.4 KB

Also, @replitfaris is a Replit Admin.

5

image
image885×113 20.2 KB

2 Likes
6

This is just a page to block people from accessing our beta/staging website. There is no hacking involved, though I’m concerned that you’re receiving emails that send you there.

Do you mind forwarding the email to faris@repl.it please?

2 Likes
8

I sent you 1 of like 3. I got several comments from Bookie.

9

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.