2.- Prime dice
Some years ago this casino gets an update where each time you make a withdrawal you get back 0.0001... so if the min withdraw was 0.001 then you could earn easy money with this. I depo 0.1btc to my account, then send a tip of 0.001 to a second account and withdraw it. i get 0.0001 back, then I send another 0.001 tip and now withdraw 0.0011, I get back 0.0001, and I repeat the process a lot of times. Before I finish with the starting 0.1 the site blocks my account with close to 0.03 on it. and I never recover that money. I was just getting information to report the bug, ut for them I abuse the system and they never give me my money back.
It was a long time ago, and they do the right thing, even If i was about to report the bug i should do it from the start when i detect the bug and not after exploiting it, so, it was my fault.
Some years ago this casino gets an update where each time you make a withdrawal you get back 0.0001... so if the min withdraw was 0.001 then you could earn easy money with this. I depo 0.1btc to my account, then send a tip of 0.001 to a second account and withdraw it. i get 0.0001 back, then I send another 0.001 tip and now withdraw 0.0011, I get back 0.0001, and I repeat the process a lot of times. Before I finish with the starting 0.1 the site blocks my account with close to 0.03 on it. and I never recover that money. I was just getting information to report the bug, ut for them I abuse the system and they never give me my money back.
It was a long time ago, and they do the right thing, even If i was about to report the bug i should do it from the start when i detect the bug and not after exploiting it, so, it was my fault.
I remember this. This was in 2015 or 2016 IIRC. The exploit only lasted for a couple of days before they patched it up. I didn't have the energy to create multiple accounts back then in order to take advantage of this bug in their system. Good thing they patched it quickly right before anyone else can abuse it hard.
3.- No confirmation sites.
Any site to allows you to gamble with nonconfirmed coins is vulnerable to a double-spend attack. People could wager their balance and if they win then waits for the transaction to confirm, and if they lose they could make a double spend, that's a known vulnerability.
Any site to allows you to gamble with nonconfirmed coins is vulnerable to a double-spend attack. People could wager their balance and if they win then waits for the transaction to confirm, and if they lose they could make a double spend, that's a known vulnerability.
This one I don't think any service or platform still implements nowadays. The minimum that gambling platforms require before the balance appears on the account is one confirmation, and is enough to protect them from double-spending accounts for the mean time.
There is also a certain casino (betcoin.tm, now down due to scams) wherein their slots have this predictable pattern that you can exploit and make lost of money with. It may not be a vulnerability but it's something people at the time can certainly exploit. Won around 1 btc because of that game with a starting capital of 0.01BTC
