"CloudBleed" - EVGA Forums

Join us now!

Username
Password
Verification
	Stay logged in

Forgot Your Password? Forgot your Username? Haven't received registration validation E-mail?

Welcome, ! User Control Panel Log out

Forums
Posts

Latest Posts

Active Posts

Recently Visited

Search Results

View More
Blog

Recent Blog Posts

View More
Photos

Recent Photos

My Favorites

View More Photo Galleries
PMs

Unread PMs

Inbox

Send New PM View More
Page Extras
Menu
- Forum Themes

Mark Thread UnreadFlat Reading Mode ❐

"CloudBleed"

Author Post Essentials Only Full Version
ty_ger07 Insert Custom Title Here Total Posts : 21174 Reward points : 0 Joined: 2008/04/10 23:48:15 Location: traveler Status: online Ribbons : 270 2017/02/24 12:08:11 (permalink) Similar to the HeartBleed Bug, but different. May affect security and account information on many websites. Password changes are advisable. This is regarding a recent vulnerability exposed in Cloudflare's infrastructure. For months now, there has been a vulernerability that allowed data transmitted between Cloudflare's proxy servers and the target server to be exposed. Affected sites can be found in this list: https://github.com/pirate/sites-using-cloudflare Sources: https://bugs.chromium.org...ject-...detail?id=1139 https://blog.cloudflare.c...ident...re-parser-bug/ https://www.reddit.com/r/...in/co...flare_reverse/ Cloudflare is now finding a solution for this, for now just keep safe. ASRock Z77 • Intel Core i7 3770K • EVGA GTX 1080 • Samsung 850 Pro • Seasonic PRIME 600W Titanium My EVGA Score: 1546 • Zero Associates Points • I don't shill #1 5 Replies Related Threads
veganfanatic CLASSIFIED Member Total Posts : 2119 Reward points : 0 Joined: 2015/06/20 18:08:41 Status: offline Ribbons : 1 Re: "CloudBleed" 2017/02/24 13:56:57 (permalink) i have noticed a few problems on more than just cloudfare and they problems Corsair Obsidian 750D Airflow Edition + Corsair AX1600i PSU My desktop uses the ThinkVision 31.5 inch P32p-20 Monitor. My sound system is the Edifier B1700BT #2
ty_ger07 Insert Custom Title Here Total Posts : 21174 Reward points : 0 Joined: 2008/04/10 23:48:15 Location: traveler Status: online Ribbons : 270 Re: "CloudBleed" 2017/02/26 11:04:36 (permalink) I am not sure what you mean. "Problems"? Such as what? This thread isn't about website issues. This thread relates to the massive dump of random user information from hundreds or thousands of websites such as user's locations, passwords, user names, private messages, credit card information, and of course potentially their public non-sensitive information as well. There are examples of actual information which was dumped, in the links above. The CloudFlare service started to overrun its buffers in certain situations and puke out additional information to anyone who happened to view it (including search engines). Any sensitive information you have saved, stored, or recorded on any website which uses CloudFlare (many) could potentially now be out there in someone's hands. I don't think that there is any way to know or measure the potential impact at this time. post edited by ty_ger07 - 2017/02/26 11:13:25 ASRock Z77 • Intel Core i7 3770K • EVGA GTX 1080 • Samsung 850 Pro • Seasonic PRIME 600W Titanium My EVGA Score: 1546 • Zero Associates Points • I don't shill #3
bleedcloud New Member Total Posts : 1 Reward points : 0 Joined: 2017/02/26 16:53:24 Status: offline Ribbons : 0 Re: "CloudBleed" 2017/02/26 16:54:56 (permalink) If you need to check your exposure, hit bleed.cloud to quickly domains or scan your exposure. #4
XrayMan Insert Custom Title Here Total Posts : 73000 Reward points : 0 Joined: 2006/12/14 22:10:06 Location: Santa Clarita, Ca. Status: offline Ribbons : 115 Re: "CloudBleed" 2017/02/26 22:35:42 (permalink) Not good. My Affiliate Code: 8WEQVXMCJL Associate Code: VHKH33QN4W77V6A &nbsp #5
James_L CLASSIFIED Member Total Posts : 4336 Reward points : 0 Joined: 2009/07/29 12:27:56 Status: offline Ribbons : 46 Re: "CloudBleed" 2017/02/27 08:47:06 (permalink) bleedcloud If you need to check your exposure, hit bleed.cloud to quickly domains or scan your exposure. Cloudflare has already messaged the domains of which may have issues. There is no need to specifically look into a domain if you aren't the owner of said domain and using Cloudflare as a caching provider. There happens to be a list (growing) of which can be checked against but, for the most part, quite a number of domains did not have issue with compromise. Changing your passwords on any listed site is a very good idea. [Listing of sites possibly affected] #6

Jump to:

Back to Mobile