We just updated this instance with a security fix, see https://github.com/tootsuite/mastodon/releases/tag/v3.1.2 under security and https://github.com/tootsuite/mastodon/commit/0c28a505dddd13e2773cd3d5e0beef76a21eb415, we encourage any other Mastodon Admin to update to the latest dot version available ASAP.
The gist of it is that a well-crafted request could reveal any toots on this instance without authentication. If anyone is worried about one of her/his toots I can offer to look for foul play in our logs, but those only go back 2 weeks, so they might not paint a full picture.
This is also a reminder that any toot you write on Mastodon is not encrypted and might be read at least by the administrators of your home instance and the administrators of any receiving instance. Mastodon should _not_ be used for sensitive content or content you'd like to keep strictly private. Actually we would rather not be entrusted with such content 🙂
In case you need to discuss sensitive matters or need to transmit data you'd like to keep strictly private, we recommend end-to-end-encrypted messengers, for example Threema or Signal. Telegram can encrypt 1-on-1 chats but encryption needs to be activated. We also offer a federated chat that supports encryption, even for group chats, on Matrix https://riot.kif.rocks (registrations open), you need to first activate encryption there too. Additional info here https://wiki.kif.rocks/wiki/Software:Hauptseite#Allgemein_im_Rahmen_der_KIF_angebotene_Dienste
Mastodon ist ein soziales Netzwerk. Es basiert auf offenen Web-Protokollen und freier, quelloffener Software. Es ist dezentral (so wie E-Mail!).