82
Admin of an anarchist Mastodon server raided by FBI, insecure user data gets seized (www.neowin.net)
submitted 1 year ago by savoy@lemmygrad.ml to c/technology@lemmy.world
13 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] TWeaK@lemm.ee 18 points 1 year ago* (last edited 1 year ago)

Is this really a big deal though? Most of the data they'll have is publicly available data from other federated instances. The few users that are local might have some data on the server, but that's literally just login details and maybe an email address or Matrix user ID.

Meanwhile, Meta and Twitter try to scrape every bit of info they can from you, from all across the web.

Edit: after actually reading the article I see it includes DM content as well. This could maybe be an issue, but again if you want privacy you shouldn't be communicating on that platform.

[-] skillissuer@lemmy.world 11 points 1 year ago

DMs, emails, logins, and IPs, which they can use to pinpoint individual users

[-] TWeaK@lemm.ee 2 points 1 year ago
  • DMs - this is an issue, but as I say you shouldn't be chatting on Mastadon if you want your conversations to be private. Move the conversation elsewhere.
  • Email addresses - might be an issue, but only if you're using an email you shouldn't be and linking accounts/online personas together when you want them separate.
  • Logins - publicly available. Passwords were secure.
  • IPs - always gonna be available to the instance or website you're using. If you don't want the instance to know your home IP, there are a number of things you could be doing to mask this.

It's really only the DMs that have some level of concern. IPs and email addresses might give the FBI a lead, however only if you aren't covering yourself properly. Eg one of the darkweb marketplaces sent a welcome email to new users with a reply to email for the admin's personal gmail - this was used to identify him as he used the same email on LinkedIn.

What happened here isn't great, but with federated social media it should be immediately obvious that things are not private nor massively secure, and users should take that in account when registering for and using the service. This article doesn't prove any new faults with federated services that weren't already a given.

[-] julianh@lemm.ee 2 points 1 year ago

Yeah I haven't used dms here but mastodon at least makes it pretty clear that it isn't encrypted. If you want something secure use matrix or something like that.

this post was submitted on 07 Jul 2023
82 points (96.6% liked)

Technology

58144 readers
4351 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world