Author

Topic: mBit Casino is Insecure (Read 191 times)

sr. member
Activity: 256
Merit: 250
CSGOBetGuide.com - Esports Gambling List
December 13, 2017, 01:25:53 AM
#5
This is pretty standard in But coin casino circles for no sign-up site. I’ve seen this quite a few times before And I don’t feel like there’s any reason for alarm. You may contact support if you’re feeling worried about it, I’m sure they will have a more detailed description to better ease your mind.
legendary
Activity: 3808
Merit: 1723
December 12, 2017, 06:38:06 PM
#4
I signed into mBit casino yesterday.  To my surprise my password and email were posted into the URL bar.  Not up and up on my tech but having text outline the login information in it's entirety seems prettry insecure, and I am kind of pissed off to be honest.

Anyone else see this?

This is normal.

Many of the no account / instant play casinos do this.

Generally your private key for the site is generated on the client side (not on server side) and its what authenticates you with the site.

If this is an issue most sites let you manually create an account with an email and password in case you lose your secret URL.
member
Activity: 114
Merit: 11
December 12, 2017, 06:03:45 PM
#3
Thanks for your input.

That is shady as fuck... Funny part is I run an affiliate site, and all the mentioned URL's above haven't paid a dollar, yet every other listing has.  Gotta love the shady fucks.
hero member
Activity: 1008
Merit: 1012
December 12, 2017, 04:46:47 PM
#2
I believe they are the same casino as vegascasino.io
hence they are also affiliated to bitcasino.io
and as far as I know they are also sportsbet.io

See a trend with all their domain name here all within the same casino business? Undecided

You have to ask yourself why.
Also if they don't have the green padlock for SSL I wouldn't trust in a gambling site not to have one.
Or some other sort of security on their site.
member
Activity: 114
Merit: 11
December 12, 2017, 04:41:59 PM
#1
I signed into mBit casino yesterday.  To my surprise my password and email were posted into the URL bar.  Not up and up on my tech but having text outline the login information in it's entirety seems prettry insecure, and I am kind of pissed off to be honest.

Anyone else see this?
Jump to: