🚨 Alert 🚨
There is a new scam wave spreading across Mastodon.
If you see a post like the one below, do not interact with it. SImply report to your server admin.
As moderators, we will do our best to respond to these reports swiftly and will suspend any account guilty of sharing malicious links.
Server admins, if you are able, now may be the time to temporarily turn off open sign ups to help prevent the spread.
Please boost!
🚨 Alert 🚨
There is a new scam wave spreading across Mastodon.
If you see a post like the one below, do not interact with it. SImply report to your server admin.
Server admins, if you are able, now may be the time to temporarily turn off open sign ups.
As moderators, we will do our best to respond to these reports swiftly. We will also add malicious links to our Newsmast Foundation filters list, meaning the posts should not show on our services.
Can we get rid of the Fediverse Chick already? This is starting to get on my nerves 😅 
I've decided to suspend the following Misskey instances from both buddyverse.one and this instance due to a lack of moderation. I've reported multiple posts with no response:
1. tickler.cc
2. usasa.ky
#fediblock #spam #spamwave #misskey #fediverse #fediadmin #mastoadmin
Of the 87 servers we saw compromised in the recent #SpamWave - 68 have modified registration settings and deleted the accounts, 15 remain open, 4 are now offline.
Special thanks to @noahimesaka1873 @austin @gunchleoc and all the IFTAS Connect community members that helped gather info, communicate with the impacted servers, and keep our data up to the minute.
Today? New botnet creating accounts on your servers. See https://mastodon.iftas.org/@sw_isac/113283701270369397 - Connect members can track https://connect.iftas.org/forums/discussion/new-botnet-creating-accounts-on-multiple-servers/
Be advised of bulk inauthentic account creation on multiple ActivityPub service providers using a range of email domains and a single IP address. Account registration(s) reported from: 134.195.153.189 SW-ISAC recommends blocking access for the listed IP address for at least two weeks. As an additional measure to ward against future activity, consider limiting or blocking new account creation from the listed email domains for a similar period. Full advisory: https://groups.google.com/a/iftas.org/g/sw-isac-announce/c/So-wMVYAhjw
If any Mastodon admins are dealing with spam account sign-ups, it's worth noting that these accounts seem to universally use disposable email providers and burner email address. There's a GitHub repo that tracks these providers. All moderation inquiries are sent to a user's email on Mastodon, so there's no legitimate reason any Mastodon user should be using a disposable email address. As such, there's a git repository that tracks these disposable email providers. There are also bash scripts that will import the repository into tootctl for you.
The disposable email git repo can be found here:
And the bash scripts can be found here:
Simply clone the repo and copy the bash script onto your server, then edit the script to point at your Mastodon installation and the directory you cloned the repository to, and it should handle the rest.
Side note: I checked our logs and we had a huge spike in attempted sign-ups from a bunch of different disposable email addresses this week, so I can confirm that blocking them definitely works. 
#Mastodon #MastoMeta #MastodonAdmin #MastoAdmin #Spam #Spamwave
So quite a lot of stuff happened today with the mastodon update and the spam wave going on, so I just rambled a bit about it, and also about my new Switch games I got!
This is day 79 of #100DaysToOffload
https://joelchrono.xyz/blog/2024-10-08-mastodon-and-life-updates
Admin
Newsmast Foundation
Roni Rolle Laukkarinen
Oblomov
ely
Mitex Leo
Jaz (IFTAS)
Rusty Corgi
Joel 
