Other recent parties (images from pitboss)
Topic: [dicenow.com] btc/ltc casino - 10,000 rolls per click - play/invest - multi edge (Read 15317 times)
October 01, 2014, 11:16:17 AM
A few pics from today's party. House profit moved from 30-> 150-180 in a single day
Other recent parties (images from pitboss)
Other recent parties (images from pitboss)
September 15, 2014, 02:57:11 PM
So dicenow is still cruising with a few problems but PD (signature) remains the biggest in the market
Tried dicenow and liked it
Tried dicenow and liked it
September 15, 2014, 08:01:47 AM
You should find a professional help, security wise.
I don't even use an sql database... 
September 12, 2014, 11:53:41 PM
...
But your site has the another flaw - so called sql-injection flaw.
P.S.: I happen to protect some https enabled servers and I patched the SSL LOGN TIME AGO. We had several sql-injection attacks, none successful, but even so...
You should find a professional help, security wise.
I don't even use an sql database...
September 10, 2014, 02:35:54 PM
we are now fully patched for the openssl heartbleed bug.
all previous remembered login cookies have been invalidated,
so you will need to relogin to access your old account.
http://filippo.io/Heartbleed/#dicenow.com
all previous remembered login cookies have been invalidated,
so you will need to relogin to access your old account.
http://filippo.io/Heartbleed/#dicenow.com
I hope you're aware that heartbleed bug enables the attacker to reveal several (some - possibly all) user passwords.
ALL PASSWORDS SHOULD BE CHANGED.
It seems that the attacker somehow revealed passwords for at least two accounts. But you cannot be sure - if he revealed more than these two passwords.
But your site has the another flaw - so called sql-injection flaw.
P.S.: I happen to protect some https enabled servers and I patched the SSL LOGN TIME AGO. We had several sql-injection attacks, none successful, but even so...
You should find a professional help, security wise.
September 10, 2014, 02:29:26 PM
dicenow
Hello! Today two accounts (my 13773 and my wife 14532) was hacked and all bitcoins was withdrawed to 1NHQEzpernPm4BKh1E3P1Sh4Bn4YA6bXy6
Passwords not changed, 2fa is on. How can this happens? Can you help me to understand what is going on?
Man in the middle attack.Hello! Today two accounts (my 13773 and my wife 14532) was hacked and all bitcoins was withdrawed to 1NHQEzpernPm4BKh1E3P1Sh4Bn4YA6bXy6
Passwords not changed, 2fa is on. How can this happens? Can you help me to understand what is going on?
The only one my mistake, the passwords was same on both accounts. But accounts was on different PC's and with different providers. e-mails was different too.
In the case of a man-in-the-middle attack, the hacker steal your logged-session which is valid for an hour or more.
The only way to protect from this kind of attack is to enable an automatic-logout-on-IP-change but I almost never saw it.
Even if it exist, the hacker can spoof your IP so yeah you can't do much...
It is quite a high level hacking IMO unless you computer is full of trojans.
Don't spread bullshit. Accounts were accessed from some foreign IPs. Sessions are https - so encrypted. But even so, fund withdrawing should not be possible, without 2fa.
The site has, most probably some kind of sql-injection security flaw and the attacker managed to access the SQL database directly and made the redraw action without the user inteface.
The owner of the site should refund your coins - as the site is hacked.
It's not your fault at all.
August 06, 2014, 12:20:07 PM
site is down
July 09, 2014, 11:04:32 AM
seems this ship is finally getting slightly... slightly more active with a few more guys betting.....
June 25, 2014, 10:21:18 AM
What does "10,000 rolls per click mean?"
You can pre-program a bot on dicenow and it will roll it for you. The bot supports up to 10k iteration for 1 click you made. Try it with free coins
yes this is one of our more unique features.
it is inspired by ggdice
June 06, 2014, 11:09:04 PM
What does "10,000 rolls per click mean?"
You can pre-program a bot on dicenow and it will roll it for you. The bot supports up to 10k iteration for 1 click you made. Try it with free coins
June 06, 2014, 02:56:27 PM
What does "10,000 rolls per click mean?"
I guess the computer simulates 10,000rolls and gives u the result instantly
You can ask to bet 1satoshi and x2 if you lose but return to 1 if you win; it will do i t 10,000times in an instant and gives you the result : +5000 or you don't have enough to make the last bet
XD
nice
May 31, 2014, 01:17:15 AM
What does "10,000 rolls per click mean?"
May 28, 2014, 12:57:04 PM
DN seemed a bit sketchy and ED seemed like a better bet, it turns out DN has been growing steadily and hasn't shut down when ED is probably finished; I wonder what would happen if DN lost a lot to a player though
May 23, 2014, 10:10:11 PM
XD
May 23, 2014, 06:13:34 PM
Build it and they will come. Sounds like the easy part of the problem
May 22, 2014, 10:13:12 PM
Become the cryptsy of dicers, start adding every frickin coin possible. Sounds like an excellent business scheme to me
You've got to have houses backing all of the currencies, however.
May 22, 2014, 09:48:31 PM
Become the cryptsy of dicers, start adding every frickin coin possible. Sounds like an excellent business scheme to me
May 22, 2014, 12:20:12 PM
Forget the request to add BC, but please to consider adding Darkcoin
With it's emphasis on anonymity it would be a very good match IMO.
With it's emphasis on anonymity it would be a very good match IMO.
May 22, 2014, 10:14:45 AM
Site will be down for ~6 hours this Friday May 23 starting 9AM and ending around 3-4PM Pacific Standard Time.
Sorry for the inconvenience.
Edit: Whoops actually it is Friday May 23, not Saturday.
Sorry for the inconvenience.
Edit: Whoops actually it is Friday May 23, not Saturday.
April 23, 2014, 08:04:05 AM
dicenow
Hello! Today two accounts (my 13773 and my wife 14532) was hacked and all bitcoins was withdrawed to 1NHQEzpernPm4BKh1E3P1Sh4Bn4YA6bXy6
Passwords not changed, 2fa is on. How can this happens? Can you help me to understand what is going on?
Man in the middle attack.Hello! Today two accounts (my 13773 and my wife 14532) was hacked and all bitcoins was withdrawed to 1NHQEzpernPm4BKh1E3P1Sh4Bn4YA6bXy6
Passwords not changed, 2fa is on. How can this happens? Can you help me to understand what is going on?
The only one my mistake, the passwords was same on both accounts. But accounts was on different PC's and with different providers. e-mails was different too.
In the case of a man-in-the-middle attack, the hacker steal your logged-session which is valid for an hour or more.
The only way to protect from this kind of attack is to enable an automatic-logout-on-IP-change but I almost never saw it.
Even if it exist, the hacker can spoof your IP so yeah you can't do much...
It is quite a high level hacking IMO unless you computer is full of trojans.
That is a way for someone to access your account protected by f2a; getting your f2a back up is an other way
If each withdrawal is protected by f2a he won't be able to withdraw even if he got access to your account stealing your logged-session
Jump to: