Can we have a list of casinos that made use of Cloudflare?

e-coinomist

legendary

Activity: 2380

Merit: 1085

Money often costs too much.

Quote from: lsqgoddess on February 26, 2017, 08:36:57 AM

Quote from: NLNico on February 25, 2017, 11:06:46 PM

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

21.co

...

xapo.com

Very comprehensive list, thanks dude very much. Actually we need to modify our passwords, although it is unecessary because the probability of leaked info is extremely low, only 1 out of 3 million.

bitwala, the xapo card, trezor even! The miningpool that I have been trusting the most. This is worse than heartbleed been. And one against a million isn't unlikely Cheesy

from a gambler's perspective.
Maybe bitcoins very own country has been exceptionally sensitive on DDoS attacks to run into this plot?
Just mentioning none of my other payment services (FIAT based) got affected.

lsqgoddess

full member

Activity: 172

Merit: 100

Quote from: NLNico on February 25, 2017, 11:06:46 PM

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

21.co
777coin.com
99bitcoins.com
alphabaymarket.com
betcoin.ag
bitcasino.io
bitcoin.com
bitcoin.de
bitcoin.it
bitcoin.org
bitcoincharts.com
bitcoinvideocasino.com
bitcoinwisdom.com
bitfinex.com
bitgo.com
bitmain.com
bitpanda.com
bitpay.com
bitrefill.com
bitsler.com
bitso.com
bitstarz.com
bittrex.com
bitvest.io
bitwage.com
bitwala.io
blockchain.com
blockchain.info
blockr.io
brave.com
btc-e.com
btc.com
bustabit.com
cex.io
chain.com
cloudbet.com
coinbase.com
coincap.io
coincorner.com
coindesk.com
coinmarketcap.com
coinroll.com
coins.ph
cointelegraph.com
crypto-games.net
cryptocoinsnews.com
cryptocompare.com
cryptopay.me
dash.org
dicesites.com
directbet.eu
fortunejack.com
getmonero.org
just-dice.com
kraken.com
localbitcoins.com
luckyb.it
mbitcasino.com
moneypot.com
nitrogensports.eu
paxful.com
peerbet.org
pocketdice.io
poloniex.com
primedice.com
purse.io
quoine.com
rollin.io
safedice.com
shapeshift.io
slock.it
slushpool.com
sportsbet.io
trezor.io
unocoin.com
uphold.com
vegascasino.io
xapo.com

Very comprehensive list, thanks dude very much. Actually we need to modify our passwords, although it is unecessary because the probability of leaked info is extremely low, only 1 out of 3 million.

Slark

legendary

Activity: 1862

Merit: 1004

It is not like your personal account details were leaked, the amount of sensitive data compromised by that security flaw is less than 0,00003%
If the service you are using is reliable they should send you a warning mail, that your account might be affected. If they didn't do it then, either:

1. They are confident it is not a problem and everything will be all right.
2. They don't want to cause panic and undermine consumer's trust in their service.
3. They are incompetent and don't care about security.

ethereumhunter

hero member

Activity: 2912

Merit: 541

Leading Crypto Sports Betting & Casino Platform

i think if we have activated our 2FA and change our password before, we can skip this step but i don't know is it affected to secure our account or not, i think its better we change it to prevent bad thing that might be happen to us. i hope that the bug is already fix so we don't have to thinking too much about this and we can continue to playing gambling games with safe.

ralle14

legendary

Activity: 3374

Merit: 1922

Shuffle.com

Quote from: adaseb on February 26, 2017, 03:54:55 AM

One thing I dont understand is why we have to disable 2FA and re-enable 2FA if we were using it in the past? The secret backup 2FA code shouldn't of been leaked in anyway. When we put in the 6 digit code, its after some type of hash and you can't reverse engineer it.

Even if you knew a bunch of codes in sequential order. So can someone clarify why we need to disable and enable 2FA?

It's up to you if you want to reset your 2fa or not but as what zodiac said the chances of both your pw and 2fa getting leaked from the same site is zero so resetting isn't necessary but others still do this just to be on the safer side of things.

Lionidas

hero member

Activity: 1008

Merit: 1012

I knew that Cloudbet used them but coinbase?
Oh this is worst then I expected it to be. And it just didn't effect these not so important bitcasino sites and exchanges and wallet sites as well. Lips sealed

Cloudbleed nice term to use for this utter failure of common sense on a massive scale here.
Expect law suits to follow if anyone loses millions of dollars in bitcoin theft because of this breach in trust of a company whose sole purpose was to protect their clients from attacks on their sites so not to have their client and customer's account information secure in the first place. Undecided

BRE

legendary

Activity: 1218

Merit: 1014

Lucky.lat | Marketing Solutions & Implementations

Quote from: stingleword on February 24, 2017, 10:38:37 AM

Hello, LuckyBit visitors! We are aware that LuckyBit is one of the sites affected by the CloudBleed Bug. We have performed a systemwide audit and determined that we are largely unaffected by the bug. Due to the on-chain nature of our game, no wallet data or personal information was placed at risk by the bug; only publicly available information would be available, so LuckyBit users have nothing to fear from their use of our site.

LuckyBit Micro and LuckyBit Derby are also unaffected directly - their backends were not subject to the bug. We are also aware that MoneyPot is one of the affected sites and have taken the necessary precautions as advised by their administration. You can always log out of LuckyBit Micro/Derby and log back in to generate a new token, and this will protect you against any potential data theft.

If you have questions or concerns, feel free to pop in to the chat at LuckyBit and ask your question.

adaseb

legendary

Activity: 3808

Merit: 1723

One thing I dont understand is why we have to disable 2FA and re-enable 2FA if we were using it in the past? The secret backup 2FA code shouldn't of been leaked in anyway. When we put in the 6 digit code, its after some type of hash and you can't reverse engineer it.

Even if you knew a bunch of codes in sequential order. So can someone clarify why we need to disable and enable 2FA?

sulendra12

hero member

Activity: 2814

Merit: 526

Undeads.com - P2E Runner Game

Quote from: Loepuenkyou on February 26, 2017, 12:36:00 AM

~snipped~

It doesn't hurt you much for doing this, only takes 5 minutes to do unless you are a lazy person.
That's highly recommended to reset your 2FA as well like ICONOMI's email said.

Gonna change my password now.

milewilda

legendary

Activity: 3094

Merit: 1127

Quote from: piloder on February 26, 2017, 12:27:13 AM

Quote from: NLNico on February 25, 2017, 11:06:46 PM

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

Thank you for the list just changed my password in poloniex and fortunejack. Yes its better not to take chance of getting hacked.

I do the same thing too I have changed my password since I saw on the list fortunejack is included and poloniex which I also use these websites. Better to be safe than waiting to be hacked on your funds inside your account.Changing password doesn't really hurt at all.

Loepuenkyou

hero member

Activity: 588

Merit: 500

ussualy if you have much balance, in all service not only casino and gambling site
but exchanger and more always use 2FA, safe youre account
iam many user in gambling site, directbet, crypto-game.nets, yolodice,primedice, duckdice but can't notification about must replace password
iam only get notification from poloniex and kraken

piloder

legendary

Activity: 966

Merit: 1006

Quote from: NLNico on February 25, 2017, 11:06:46 PM

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

Thank you for the list just changed my password in poloniex and fortunejack. Yes its better not to take chance of getting hacked.

carlfebz2

hero member

Activity: 2926

Merit: 722

DGbet.fun - Crypto Sportsbook

Quote from: NLNico on February 25, 2017, 11:06:46 PM

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

21.co
777coin.com
99bitcoins.com
alphabaymarket.com
betcoin.ag
bitcasino.io
bitcoin.com
bitcoin.de
bitcoin.it
bitcoin.org
bitcoincharts.com
bitcoinvideocasino.com
bitcoinwisdom.com
bitfinex.com
bitgo.com
bitmain.com
bitpanda.com
bitpay.com
bitrefill.com
bitsler.com
bitso.com
bitstarz.com
bittrex.com
bitvest.io
bitwage.com
bitwala.io
blockchain.com
blockchain.info
blockr.io
brave.com
btc-e.com
btc.com
bustabit.com
cex.io
chain.com
cloudbet.com
coinbase.com
coincap.io
coincorner.com
coindesk.com
coinmarketcap.com
coinroll.com
coins.ph
cointelegraph.com
crypto-games.net
cryptocoinsnews.com
cryptocompare.com
cryptopay.me
dash.org
dicesites.com
directbet.eu
fortunejack.com
getmonero.org
just-dice.com
kraken.com
localbitcoins.com
luckyb.it
mbitcasino.com
moneypot.com
nitrogensports.eu
paxful.com
peerbet.org
pocketdice.io
poloniex.com
primedice.com
purse.io
quoine.com
rollin.io
safedice.com
shapeshift.io
slock.it
slushpool.com
sportsbet.io
trezor.io
unocoin.com
uphold.com
vegascasino.io
xapo.com

Thanks for this list atleast i do know now what sites do use cloudfare and seeing on it seems like i do have some accounts on those websites listed and i think theres more and people should really add it up here so that members or community would able to have awareness.

NLNico

legendary

Activity: 1876

Merit: 1295

DiceSites.com owner

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

21.co
777coin.com
99bitcoins.com
alphabaymarket.com
betcoin.ag
bitcasino.io
bitcoin.com
bitcoin.de
bitcoin.it
bitcoin.org
bitcoincharts.com
bitcoinvideocasino.com
bitcoinwisdom.com
bitfinex.com
bitgo.com
bitmain.com
bitpanda.com
bitpay.com
bitrefill.com
bitsler.com
bitso.com
bitstarz.com
bittrex.com
bitvest.io
bitwage.com
bitwala.io
blockchain.com
blockchain.info
blockr.io
brave.com
btc-e.com
btc.com
bustabit.com
cex.io
chain.com
cloudbet.com
coinbase.com
coincap.io
coincorner.com
coindesk.com
coinmarketcap.com
coinroll.com
coins.ph
cointelegraph.com
crypto-games.net
cryptocoinsnews.com
cryptocompare.com
cryptopay.me
dash.org
dicesites.com
directbet.eu
fortunejack.com
getmonero.org
just-dice.com
kraken.com
localbitcoins.com
luckyb.it
mbitcasino.com
moneypot.com
nitrogensports.eu
paxful.com
peerbet.org
pocketdice.io
poloniex.com
primedice.com
purse.io
quoine.com
rollin.io
safedice.com
shapeshift.io
slock.it
slushpool.com
sportsbet.io
trezor.io
unocoin.com
uphold.com
vegascasino.io
xapo.com

coingamblingreviews

legendary

Activity: 1043

Merit: 1032

★Bitcoin Gambling Reviews★

Well this is a bit scary.

Just need to change my password and 2FA on all gambling sites to be safe?

Zodiac1233

hero member

Activity: 616

Merit: 524

Bitvest & 777Coin Developer

Quote from: Qartersa on February 25, 2017, 09:54:35 PM

Quote from: klf on February 25, 2017, 08:09:33 PM

Quote from: adaseb on February 25, 2017, 07:45:23 PM

Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.

Not only those two sites but most of the reputed sites provide that 2fa feature. Bitsler also has this feature, once you enable this feature even for withdrawing your funds also you need to enter 2fa feature password to send money. If I'm not wrong, fortunejack asks 2fa password only during login time and never ask while withdrawing funds.

So are you saying that 2fa is actually more harmful than it is helpful? Since everything got compromised due to the stupid cloudflare, which should actually be the protector of websites, mean that there is a possibility that the 2fa could have been stolen and used to withdraw? That would be scary to think that my money is now not safe from websites using cloudflare.

The keys used when you first setup your 2fa on sites could have been leaked as the bug was present for many months. 2fa would still keep your account secure, though, since you'd need your 2fa key and password stolen to have your account compromised on the affected sites as opposed to just your password alone. The odds of having your 2fa key and password both leaked for the same site are nearly zero. The recommendation is to still reset your 2fa (most sites should give you a new key if you do this), along with resetting your password.

Qartersa

hero member

Activity: 868

Merit: 535

Quote from: klf on February 25, 2017, 08:09:33 PM

Quote from: adaseb on February 25, 2017, 07:45:23 PM

Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.

Not only those two sites but most of the reputed sites provide that 2fa feature. Bitsler also has this feature, once you enable this feature even for withdrawing your funds also you need to enter 2fa feature password to send money. If I'm not wrong, fortunejack asks 2fa password only during login time and never ask while withdrawing funds.

So are you saying that 2fa is actually more harmful than it is helpful? Since everything got compromised due to the stupid cloudflare, which should actually be the protector of websites, mean that there is a possibility that the 2fa could have been stolen and used to withdraw? That would be scary to think that my money is now not safe from websites using cloudflare.

BettorChain.com

member

Activity: 79

Merit: 10

You can check if a website use cloudflare here: http://www.doesitusecloudflare.com/

klf

legendary

Activity: 1344

Merit: 1000

Quote from: adaseb on February 25, 2017, 07:45:23 PM

Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.

Not only those two sites but most of the reputed sites provide that 2fa feature. Bitsler also has this feature, once you enable this feature even for withdrawing your funds also you need to enter 2fa feature password to send money. If I'm not wrong, fortunejack asks 2fa password only during login time and never ask while withdrawing funds.

adaseb

legendary

Activity: 3808

Merit: 1723

Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.

Topic: Can we have a list of casinos that made use of Cloudflare? (Read 1249 times)