Avoid The Hack! on Nostr: Critical TootRoot bug lets attackers hijack #Mastodon servers > bad actor sends ...
Critical TootRoot bug lets attackers hijack #Mastodon servers
> bad actor sends malicious toot
> instances process malicious toot
> spawns webshell
> bad actor uses webshell to assume control over the server
There is a #security patch for this - all Mastodon server admins should update if they haven't already.
#cybersecurity #infosec
https://www.bleepingcomputer.com/news/security/critical-tootroot-bug-lets-attackers-hijack-mastodon-servers/
> bad actor sends malicious toot
> instances process malicious toot
> spawns webshell
> bad actor uses webshell to assume control over the server
There is a #security patch for this - all Mastodon server admins should update if they haven't already.
#cybersecurity #infosec
https://www.bleepingcomputer.com/news/security/critical-tootroot-bug-lets-attackers-hijack-mastodon-servers/