a heads up: I got word from one of the ~threat intelligence~ companies that had listed queer.party as malicious. It appears that a user was using the text of profile itself as a means of command and control or..something like that. User has been suspended, registrations are limited, and I'm doing a review on other accounts, but i imagine queer.party isn't the first and won't be the last to be abused in this way.
Conversation
Notices
-
your purple friend (maffsie@queer.party)'s status on Friday, 01-Apr-2022 16:03:58 UTC 
your purple friend
-
Alex@rtnVFRmedia Suffolk UK (vfrmedia@social.tchncs.de)'s status on Saturday, 02-Apr-2022 05:03:39 UTC 
Alex@rtnVFRmedia Suffolk UK
I've seen reports of various Mastodon instances being misused as C&C for botnets and even some control function of a mod pack in a computer game (this last being not as bad as full on malware but still taking the piss and pushing a burden on to someone else rather than developing their own servers)
Santa Claes πΈπͺππ°π likes this. -
:pine: the :pine: (t54r4n1@mspsocial.net)'s status on Saturday, 02-Apr-2022 05:03:42 UTC
:pine: the :pine:
@maffsie I would suggest reviewing your existing accounts carefully and not allowing users to invite for the short term until you have finished your review.
-
your purple friend (maffsie@queer.party)'s status on Saturday, 02-Apr-2022 05:03:43 UTC
your purple friend
https://maff.scot/services/queer-party/rca-degraded-dns-reachability/ a report is now available for full information on what happened, why, and why i'm now suffering.
-
All Chirp! content and data are available under the