Author

Topic: Can we have a list of casinos that made use of Cloudflare? (Read 1249 times)

legendary
Activity: 2380
Merit: 1085
Money often costs too much.
I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

  • 21.co
...
  • xapo.com

Very comprehensive list, thanks dude very much. Actually we need to modify our passwords, although it is unecessary because the probability of leaked info is extremely low, only 1 out of 3 million.

bitwala, the xapo card, trezor even! The miningpool that I have been trusting the most. This is worse than heartbleed been. And one against a million isn't unlikely Cheesy from a gambler's perspective.
Maybe bitcoins very own country has been exceptionally sensitive on DDoS attacks to run into this plot?
Just mentioning none of my other payment services (FIAT based) got affected.
full member
Activity: 172
Merit: 100
I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

  • 21.co
  • 777coin.com
  • 99bitcoins.com
  • alphabaymarket.com
  • betcoin.ag
  • bitcasino.io
  • bitcoin.com
  • bitcoin.de
  • bitcoin.it
  • bitcoin.org
  • bitcoincharts.com
  • bitcoinvideocasino.com
  • bitcoinwisdom.com
  • bitfinex.com
  • bitgo.com
  • bitmain.com
  • bitpanda.com
  • bitpay.com
  • bitrefill.com
  • bitsler.com
  • bitso.com
  • bitstarz.com
  • bittrex.com
  • bitvest.io
  • bitwage.com
  • bitwala.io
  • blockchain.com
  • blockchain.info
  • blockr.io
  • brave.com
  • btc-e.com
  • btc.com
  • bustabit.com
  • cex.io
  • chain.com
  • cloudbet.com
  • coinbase.com
  • coincap.io
  • coincorner.com
  • coindesk.com
  • coinmarketcap.com
  • coinroll.com
  • coins.ph
  • cointelegraph.com
  • crypto-games.net
  • cryptocoinsnews.com
  • cryptocompare.com
  • cryptopay.me
  • dash.org
  • dicesites.com
  • directbet.eu
  • fortunejack.com
  • getmonero.org
  • just-dice.com
  • kraken.com
  • localbitcoins.com
  • luckyb.it
  • mbitcasino.com
  • moneypot.com
  • nitrogensports.eu
  • paxful.com
  • peerbet.org
  • pocketdice.io
  • poloniex.com
  • primedice.com
  • purse.io
  • quoine.com
  • rollin.io
  • safedice.com
  • shapeshift.io
  • slock.it
  • slushpool.com
  • sportsbet.io
  • trezor.io
  • unocoin.com
  • uphold.com
  • vegascasino.io
  • xapo.com

Very comprehensive list, thanks dude very much. Actually we need to modify our passwords, although it is unecessary because the probability of leaked info is extremely low, only 1 out of 3 million.
legendary
Activity: 1862
Merit: 1004
It is not like your personal account details were leaked, the amount of sensitive data compromised by that security flaw is less than 0,00003%
If the service you are using is reliable they should send you a warning mail, that your account might be affected. If they didn't do it then, either:

1. They are confident it is not a problem and everything will be all right.
2. They don't want to cause panic and undermine consumer's trust in their service.
3. They are incompetent and don't care about security.
hero member
Activity: 2912
Merit: 541
Leading Crypto Sports Betting & Casino Platform
i think if we have activated our 2FA and change our password before, we can skip this step but i don't know is it affected to secure our account or not, i think its better we change it to prevent bad thing that might be happen to us. i hope that the bug is already fix so we don't have to thinking too much about this and we can continue to playing gambling games with safe.
legendary
Activity: 3374
Merit: 1922
Shuffle.com
One thing I dont understand is why we have to disable 2FA and re-enable 2FA if we were using it in the past? The secret backup 2FA code shouldn't of been leaked in anyway. When we put in the 6 digit code, its after some type of hash and you can't reverse engineer it.

Even if you knew a bunch of codes in sequential order. So can someone clarify why we need to disable and enable 2FA?
It's up to you if you want to reset your 2fa or not but as what zodiac said the chances of both your pw and 2fa getting leaked from the same site is zero so resetting isn't necessary but others still do this just to be on the safer side of things.
hero member
Activity: 1008
Merit: 1012
I knew that Cloudbet used them but coinbase?
Oh this is worst then I expected it to be. And it just didn't effect these not so important bitcasino sites and exchanges and wallet sites as well. Lips sealed
Cloudbleed nice term to use for this utter failure of common sense on a massive scale here.
Expect law suits to follow if anyone loses millions of dollars in bitcoin theft because of this breach in trust of a company whose sole purpose was to protect their clients from attacks on their sites so not to have their client and customer's account information secure in the first place. Undecided
BRE
legendary
Activity: 1218
Merit: 1014
Lucky.lat | Marketing Solutions & Implementations
Hello, LuckyBit visitors! We are aware that LuckyBit is one of the sites affected by the CloudBleed Bug. We have performed a systemwide audit and determined that we are largely unaffected by the bug. Due to the on-chain nature of our game, no wallet data or personal information was placed at risk by the bug; only publicly available information would be available, so LuckyBit users have nothing to fear from their use of our site.

LuckyBit Micro and LuckyBit Derby are also unaffected directly - their backends were not subject to the bug. We are also aware that MoneyPot is one of the affected sites and have taken the necessary precautions as advised by their administration. You can always log out of LuckyBit Micro/Derby and log back in to generate a new token, and this will protect you against any potential data theft.

If you have questions or concerns, feel free to pop in to the chat at LuckyBit and ask your question.
legendary
Activity: 3808
Merit: 1723
One thing I dont understand is why we have to disable 2FA and re-enable 2FA if we were using it in the past? The secret backup 2FA code shouldn't of been leaked in anyway. When we put in the 6 digit code, its after some type of hash and you can't reverse engineer it.

Even if you knew a bunch of codes in sequential order. So can someone clarify why we need to disable and enable 2FA?
hero member
Activity: 2814
Merit: 526
Undeads.com - P2E Runner Game
~snipped~
It doesn't hurt you much for doing this, only takes 5 minutes to do unless you are a lazy person.
That's highly recommended to reset your 2FA as well like ICONOMI's email said.

Gonna change my password now. Smiley
legendary
Activity: 3094
Merit: 1127
I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:
Thank you for the list just changed my password in poloniex and fortunejack. Yes its better not to take chance of getting hacked.
I do the same thing too I have changed my password since I saw on the list fortunejack is included and poloniex which I also use these websites. Better to be safe than waiting to be hacked on your funds inside your account.Changing password doesn't really hurt at all.
hero member
Activity: 588
Merit: 500
ussualy if you have much balance, in all service not only casino and gambling site
but exchanger and more always use 2FA, safe youre account
iam many user in gambling site, directbet, crypto-game.nets, yolodice,primedice, duckdice but can't notification about must replace password
iam only get notification from poloniex and kraken
legendary
Activity: 966
Merit: 1006
I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:
Thank you for the list just changed my password in poloniex and fortunejack. Yes its better not to take chance of getting hacked.
hero member
Activity: 2926
Merit: 722
DGbet.fun - Crypto Sportsbook
I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

  • 21.co
  • 777coin.com
  • 99bitcoins.com
  • alphabaymarket.com
  • betcoin.ag
  • bitcasino.io
  • bitcoin.com
  • bitcoin.de
  • bitcoin.it
  • bitcoin.org
  • bitcoincharts.com
  • bitcoinvideocasino.com
  • bitcoinwisdom.com
  • bitfinex.com
  • bitgo.com
  • bitmain.com
  • bitpanda.com
  • bitpay.com
  • bitrefill.com
  • bitsler.com
  • bitso.com
  • bitstarz.com
  • bittrex.com
  • bitvest.io
  • bitwage.com
  • bitwala.io
  • blockchain.com
  • blockchain.info
  • blockr.io
  • brave.com
  • btc-e.com
  • btc.com
  • bustabit.com
  • cex.io
  • chain.com
  • cloudbet.com
  • coinbase.com
  • coincap.io
  • coincorner.com
  • coindesk.com
  • coinmarketcap.com
  • coinroll.com
  • coins.ph
  • cointelegraph.com
  • crypto-games.net
  • cryptocoinsnews.com
  • cryptocompare.com
  • cryptopay.me
  • dash.org
  • dicesites.com
  • directbet.eu
  • fortunejack.com
  • getmonero.org
  • just-dice.com
  • kraken.com
  • localbitcoins.com
  • luckyb.it
  • mbitcasino.com
  • moneypot.com
  • nitrogensports.eu
  • paxful.com
  • peerbet.org
  • pocketdice.io
  • poloniex.com
  • primedice.com
  • purse.io
  • quoine.com
  • rollin.io
  • safedice.com
  • shapeshift.io
  • slock.it
  • slushpool.com
  • sportsbet.io
  • trezor.io
  • unocoin.com
  • uphold.com
  • vegascasino.io
  • xapo.com
Thanks for this list atleast i do know now what sites do use cloudfare and seeing on it seems like i do have some accounts on those websites listed and i think theres more and people should really add it up here so that members or community would able to have awareness.
legendary
Activity: 1876
Merit: 1295
DiceSites.com owner
I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

  • 21.co
  • 777coin.com
  • 99bitcoins.com
  • alphabaymarket.com
  • betcoin.ag
  • bitcasino.io
  • bitcoin.com
  • bitcoin.de
  • bitcoin.it
  • bitcoin.org
  • bitcoincharts.com
  • bitcoinvideocasino.com
  • bitcoinwisdom.com
  • bitfinex.com
  • bitgo.com
  • bitmain.com
  • bitpanda.com
  • bitpay.com
  • bitrefill.com
  • bitsler.com
  • bitso.com
  • bitstarz.com
  • bittrex.com
  • bitvest.io
  • bitwage.com
  • bitwala.io
  • blockchain.com
  • blockchain.info
  • blockr.io
  • brave.com
  • btc-e.com
  • btc.com
  • bustabit.com
  • cex.io
  • chain.com
  • cloudbet.com
  • coinbase.com
  • coincap.io
  • coincorner.com
  • coindesk.com
  • coinmarketcap.com
  • coinroll.com
  • coins.ph
  • cointelegraph.com
  • crypto-games.net
  • cryptocoinsnews.com
  • cryptocompare.com
  • cryptopay.me
  • dash.org
  • dicesites.com
  • directbet.eu
  • fortunejack.com
  • getmonero.org
  • just-dice.com
  • kraken.com
  • localbitcoins.com
  • luckyb.it
  • mbitcasino.com
  • moneypot.com
  • nitrogensports.eu
  • paxful.com
  • peerbet.org
  • pocketdice.io
  • poloniex.com
  • primedice.com
  • purse.io
  • quoine.com
  • rollin.io
  • safedice.com
  • shapeshift.io
  • slock.it
  • slushpool.com
  • sportsbet.io
  • trezor.io
  • unocoin.com
  • uphold.com
  • vegascasino.io
  • xapo.com
legendary
Activity: 1043
Merit: 1032
★Bitcoin Gambling Reviews★
Well this is a bit scary.

Just need to change my password and 2FA on all gambling sites to be safe?
hero member
Activity: 616
Merit: 524
Bitvest & 777Coin Developer
Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.

Not only those two sites but most of the reputed sites provide that 2fa feature. Bitsler also has this feature, once you enable this feature even for withdrawing your funds also you need to enter 2fa feature password to send money. If I'm not wrong, fortunejack asks 2fa password only during login time and never ask while withdrawing funds.

So are you saying that 2fa is actually more harmful than it is helpful? Since everything got compromised due to the stupid cloudflare, which should actually be the protector of websites, mean that there is a possibility that the 2fa could have been stolen and used to withdraw? That would be scary to think that my money is now not safe from websites using cloudflare.

The keys used when you first setup your 2fa on sites could have been leaked as the bug was present for many months. 2fa would still keep your account secure, though, since you'd need your 2fa key and password stolen to have your account compromised on the affected sites as opposed to just your password alone. The odds of having your 2fa key and password both leaked for the same site are nearly zero. The recommendation is to still reset your 2fa (most sites should give you a new key if you do this), along with resetting your password.
hero member
Activity: 868
Merit: 535
Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.

Not only those two sites but most of the reputed sites provide that 2fa feature. Bitsler also has this feature, once you enable this feature even for withdrawing your funds also you need to enter 2fa feature password to send money. If I'm not wrong, fortunejack asks 2fa password only during login time and never ask while withdrawing funds.

So are you saying that 2fa is actually more harmful than it is helpful? Since everything got compromised due to the stupid cloudflare, which should actually be the protector of websites, mean that there is a possibility that the 2fa could have been stolen and used to withdraw? That would be scary to think that my money is now not safe from websites using cloudflare.
member
Activity: 79
Merit: 10
You can check if a website use cloudflare here: http://www.doesitusecloudflare.com/
klf
legendary
Activity: 1344
Merit: 1000
Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.

Not only those two sites but most of the reputed sites provide that 2fa feature. Bitsler also has this feature, once you enable this feature even for withdrawing your funds also you need to enter 2fa feature password to send money. If I'm not wrong, fortunejack asks 2fa password only during login time and never ask while withdrawing funds.
legendary
Activity: 3808
Merit: 1723
Most use it. The most common ones like PrimeDice and Fortunejack use it for sure.

I already changed my passwords on those. However do you know if you need to change your 2FA? Could your secret code of been leaked somehow? Because all you do is type in the 6 digits which keep changing.
legendary
Activity: 1456
Merit: 1023
We know a lot of sites are hiding behind Cloudflare and these sites might have been compromised and possibly affected by the CloudBleed. The

published list might be wrong, so if you can provide a comprehensive list for people or simply posting the site here, it would make things a bit

easier. I have started to change passwords and to enable 2FA for the sites I am aware of that use Cloudflare. This sucks!!!!!  Angry Angry Angry Angry
If the site are already using cloudflare then you might have noticed IP address in DNS lookup get reflected with cloudflare. I think you not to be worries if now already use 2fa.
It won't hurt to change the password and disable and enable 2fa again. better be safe than sorry. i've been busy doing password changes on a lot of sites, just to be safe lol.

Yes, I do agree on this because once I also lost around 0.04BTC paid to my account from signature campaign but by the time I signed in into account someone else was played some games and lost all my money. It has happened in the beginning so after that I will always enable 2fa function.
legendary
Activity: 1400
Merit: 1009
We know a lot of sites are hiding behind Cloudflare and these sites might have been compromised and possibly affected by the CloudBleed. The

published list might be wrong, so if you can provide a comprehensive list for people or simply posting the site here, it would make things a bit

easier. I have started to change passwords and to enable 2FA for the sites I am aware of that use Cloudflare. This sucks!!!!!  Angry Angry Angry Angry
If the site are already using cloudflare then you might have noticed IP address in DNS lookup get reflected with cloudflare. I think you not to be worries if now already use 2fa.
It won't hurt to change the password and disable and enable 2fa again. better be safe than sorry. i've been busy doing password changes on a lot of sites, just to be safe lol.
legendary
Activity: 2436
Merit: 1804
guess who's back
We know a lot of sites are hiding behind Cloudflare and these sites might have been compromised and possibly affected by the CloudBleed. The

published list might be wrong, so if you can provide a comprehensive list for people or simply posting the site here, it would make things a bit

easier. I have started to change passwords and to enable 2FA for the sites I am aware of that use Cloudflare. This sucks!!!!!  Angry Angry Angry Angry

not sure about the sites but I'm sure that it's so hard to list all of them
in general you should always set 2FA no matter what the site is using , it's a lot safer and you won't worry about your money or at least set 2FA for the sites that you use frequently and usually keep money on
hero member
Activity: 770
Merit: 500
We know a lot of sites are hiding behind Cloudflare and these sites might have been compromised and possibly affected by the CloudBleed. The

published list might be wrong, so if you can provide a comprehensive list for people or simply posting the site here, it would make things a bit

easier. I have started to change passwords and to enable 2FA for the sites I am aware of that use Cloudflare. This sucks!!!!!  Angry Angry Angry Angry

Can't you first explain what you mean before saying all this ? What is cloudbleed ? Why are you worrying about cloudflare ? Did your account get hacked or lost or something ? I dont understand what the problem is but I am interested since you mentioned cloudflare and it is used on many sites so do you think you could clarify this for me please ? I'm interested to hear your reasons.
legendary
Activity: 1176
Merit: 1001
The most Professional Cryptocurrency Casino
We know a lot of sites are hiding behind Cloudflare and these sites might have been compromised and possibly affected by the CloudBleed. The

published list might be wrong, so if you can provide a comprehensive list for people or simply posting the site here, it would make things a bit

easier. I have started to change passwords and to enable 2FA for the sites I am aware of that use Cloudflare. This sucks!!!!!  Angry Angry Angry Angry
If the site are already using cloudflare then you might have noticed IP address in DNS lookup get reflected with cloudflare. I think you not to be worries if now already use 2fa.
legendary
Activity: 1162
Merit: 1002
Almost all major Bitcoin Casinos...

You could check Cloudbleed Wiki

Here is the list of : Sites using CloudFlare
legendary
Activity: 2604
Merit: 1036
I am pretty sure NitrogenSports use Cloudflare so if you have an account there go change your password now.

https://nitrogensports.eu/blog/position-on-the-cloudflare-leak/
legendary
Activity: 966
Merit: 1042
Are you going to be adding it to the OP? Because I don't know how to find out who used Cloudflare or not. Could you add the sites that you've already changed your passwords to?
legendary
Activity: 1904
Merit: 1074
We know a lot of sites are hiding behind Cloudflare and these sites might have been compromised and possibly affected by the CloudBleed. The

published list might be wrong, so if you can provide a comprehensive list for people or simply posting the site here, it would make things a bit

easier. I have started to change passwords and to enable 2FA for the sites I am aware of that use Cloudflare. This sucks!!!!!  Angry Angry Angry Angry
Jump to: