Techly NewsGet the app

Get the latest tech news

A new security fund opens up to help protect the fediverse


A new security fund aims to help apps in the fediverse — like Mastodon, Threads, and Pixelfed — to pay researchers for disclosing security bugs.

While all software can have security issues, Mastodon — an open source and decentralized alternative to X — has fixed numerous bugs over the years, leading to the need for such a program. “Part of the program is…education for project leads, helping them understand why responsible disclosure practices for security vulnerabilities are important,” Smith told TechCrunch. “We came across several projects that just said ‘file security vulnerabilities in our public issue tracker,’ which absolutely isn’t safe, as any malicious actor watching that repository would now be able to attack instances of that software,” she added.

Get the Android app

Or read this on TechCrunch

Read more on:

Photo of fediverse

fediverse

Photo of new security fund

new security fund

Related news:

News photo

Pixelfed leaks private posts from other Fediverse instances

News photo

Substack rival Ghost is now connected to the fediverse

News photo

The fediverse promises social media without Big Tech – if it can avoid familiar pitfalls

« The Secret History of the War in Ukraine
CoreWeave’s Two-Day 65% Pop Helps Investors Forget Tepid IPO »