@wallace On one hand, it's unlikely someone using Mastodon will be thus targeted. However, I would posit most people have not considered, or even comprehend, the difficulty and cost of securing infrastructure. Particularly when it's based on code you don't control. Yes it's all open source, but relying on that is beyond even advanced devs with day jobs. Though OpenBSD does an admirable job of it!