Woke up to an email that a subdomain I linked to on a repo was resolving to a "scammy russian sign up". I couldn't see the scam site but scrambled around for an hour trying to figure out how it could've been compromised until I realised there was never a scam site and what they were looking at was more than likely the management system login for netcup :puppycat_flop: