This frequently happens to me - I open the website and I am briefly logged in as another user as can be seen at the top right corner. It takes about a second and then I’m logged in as myself again. Managed to take a quick screenshot before it changed back.
The website theme is also changed from what I have it set to.
I find it a bit concerning how frequently this happens. Anyone have any idea as to why this happens?
You must log in or register to comment.
this is one of three bugs noted here. we have no clue what causes it, but we’ve been aware of it for a few days and investigated it at least enough to think it’s effectively cosmetic and not some sort of actual log in. nobody has reported anything malicious actually being made possible, being done, etc through it which supports that conclusion, and we’ve been running into display issues in the corner there with theming too which is suspiciously similar. i’ll pass on the recommendations posted downthread and see if they are the issue here though
Thank you for your answer! :-) I am sorry for not seeing that post!
we got some good leads on what it might be and things to potentially rule out so this post has been particularly useful
Oh-oh someone might have configured caching wrong…
Like what happened to Steam in 2015: https://www.bleepingcomputer.com/news/security/steam-caching-error-leads-to-account-disclosure/
That’s a good guess. Mentioning our brave admins @gaywallet @alyaza to bring this to your attention.
You may want to read this and review caching headers and settings https://www.sans.org/blog/security-impact-of-http-caching-headers/
Edit: struggling with user mention syntax
I’ve noticed this happening to me too! Wasn’t sure if it was a real user or not or some BTS rng name or glitch or something, but one time it happened yesterday I noted the name and sure enough it was another user’s account lol
Oh that’s baaaaaad
