[cross-project-issues-dev] Attack on community Slack instances.

[Eclipse Webmaster <webmaster@xxxxxxxxxxxxxxxxxxxxxx>]

Hi Everyone,

  While this is a little outside our normal scope, we've received the following report and just wanted to make you aware.

------------------------------------------

The lovely folks at 4chan are currently making an orchestrated vandalism

attack against large Slack communities.  So far, they've hit Golang,

Kubernetes, and Rubydev.  The attack consists of posting pornographic

and offensive images, offensive language, signing up for many accounts,

subverting Slackbots, and pretending to be other users.

As this attack requires authenticated access, if your Slack community

has unmoderated automatic sign-up for the public, I strongly suggest

that you disable it immediately.

The Kubernetes admins and other projects will be putting together a team

of Slack operators across projects to coordinate security responses and

similar issues.

------------------------------------------

If you'd like the contact details to participate in coordinating responses, please send a note to webmaster and we'll point you in the right direction.

-Matt.