CONSENSUS WIRE
← Back to Tech & Science

Decentralized Social Platform Mastodon Hit by Major DDoS Attack

Tech & ScienceAI-Generated & Algorithmically Scored·

AI-generated from multiple sources. Verify before acting on this reporting.

LONDON (Reuters) - The decentralized social media platform Mastodon suffered a significant outage on Sunday after falling victim to a major distributed denial-of-service (DDoS) attack targeting its primary server.

The assault, which began at 13:00 GMT on April 20, 2026, rendered Mastodon.social inaccessible to users globally. The platform, known for its federated structure that allows independent servers to communicate, saw its central instance overwhelmed by traffic, disrupting service for millions of users who rely on the site for news and social interaction.

Security researchers identified the attack as a sophisticated DDoS campaign designed to flood the server with malicious traffic. While the specific motive remains unclear, the incident occurred shortly after a similar cyberattack targeted the rival social media platform Bluesky. A threat actor claiming affiliation with the pro-Iran hacktivist group 313 Team took responsibility for the Bluesky assault, posting claims on various channels. However, no group has publicly claimed responsibility for the Mastodon outage.

The timing of the two incidents has led to speculation that the attacks may be connected. The 313 Team has previously targeted Western technology companies and social media platforms in actions linked to geopolitical tensions. Analysts suggest the Mastodon attack could be part of a broader campaign or an opportunistic strike following the disruption of Bluesky.

Mastodon's technical team worked to mitigate the impact of the attack, implementing emergency traffic filtering and scaling infrastructure to absorb the load. Service was gradually restored over several hours, though intermittent slowdowns persisted into the evening. The platform's administrators have not released details on the duration of the outage or the specific technical vulnerabilities exploited.

The incident highlights the growing vulnerability of decentralized platforms to coordinated cyberattacks. Unlike centralized services that can deploy unified defenses, federated networks like Mastodon must coordinate security measures across multiple independent operators. The attack on Mastodon.social, the largest instance in the network, demonstrated how a single point of failure can disrupt the broader ecosystem.

Cybersecurity experts warn that social media platforms remain prime targets for hacktivist groups seeking to disrupt information flows or make political statements. The lack of a public claim for the Mastodon attack leaves questions about the attacker's identity and objectives. It remains unclear whether the 313 Team was involved or if the incident was carried out by a different actor.

As of Monday morning, Mastodon.social was operating normally, but the platform has advised users to remain vigilant for potential follow-up attacks. The incident underscores the ongoing challenges facing digital infrastructure in an era of increasing cyber warfare and hacktivism.