New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Cloudflare security incident time to change passwords
Waxspacehosting
Member
in General
The Cloudflare was vulnerable and the Reverse Proxies are Dumping Uninitialized Memory. It has been leaking customer HTTPS sessions of Uber, 1Password, FitBit, OKCupid, any website which is using the CloudFlare.
If you installed the CloudFlare plugin in the WHM, ask your customer to change the passwords for security reason.
More information here: https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
This discussion has been closed.
Comments
old news: https://www.lowendtalk.com/discussion/106740/serious-security-issue-at-cloudflare-change-all-your-passwords-now#latest
https://www.lowendtalk.com/discussion/106740/serious-security-issue-at-cloudflare-change-all-your-passwords-now#latest
Edit: Oops, 4 seconds late.
Opps! I would like to request to mods to disable the post :-)
Hello @Waxspacehosting - this forum represents the High Culture of the hosting industry and is not a content farm. If you are posting redundant and pointless things to increase your company's visibility, you will develop a very bad and undesired reputation.
High Culture Heck Yeah!
CloudFail / Cloudbleed notification emails are flooding right now
Hey BTW I know about LET, I just wanted to inform about incident as simple as that. The mistake was I didn't looked into the posts. This doesn't mean that I'm looking for visibility, there multiple ways to get visibility.
As you can see it is just 4sec difference with that post.