Hello and Welcome to Cloud Me Baby!

CMB is dedicated to improving efficiency & maximizing money making on cloud-based platforms:
-Amazon Mechanical Turk- -Clickworker- -oDesk- -UHRS- and -Other online job opportunities-.


If you are a registered member and cannot access the complete forum you have probably been flagged by our system for not meeting the POSTING POLICY.

SECURITY ALERT global announcement here. (Link corrected)

URGENT SECURITY ANNOUNCEMENT!!

URGENT SECURITY ANNOUNCEMENT!!

Post Number:#1  Postby Phebe » Fri Feb 24, 2017 10:22 am

In December, CMB suffered from some sort of connection issues. From my research, it appeared that we may have been the victim of DDoS attacks. In an effort to prevent further attacks, I signed the site up with CloudFlare.

Today I found out that CloudFlare suffered a serious memory leak. What made it worse is that search engines were apparently able to cache this information. Private information like passwords, private messages, cookies, etc appear to have been leaked.

Many websites use CloudFlare's services, so I STRONGLY RECOMMEND changing ALL of your passwords on EVERY website, including your passwords here at CMB.

To change your CMB passwords, go to your User Control Panel, click on Profile, and then click on Edit account settings. You'll see a spot where you can type in a new password, confirm (retype) the new password, and then at the bottom confirm the current password. Hit Submit. You can ignore the Username and email address fields when you are only changing your password.

Here are some links for further reading:

The bug was apparently discovered by Project Zero: https://bugs.chromium.org/p/project-zer ... d=1139#c25

CloudFlare's blog post about it: https://blog.cloudflare.com/incident-re ... arser-bug/

Lists of possibly affected sites:
https://github.com/pirate/sites-using-cloudflare
http://doma.io/2017/02/24/list-of-affec ... mains.html
User avatar
Phebe
Guru
Guru
 
Posts: 1405
Joined: Tue Oct 02, 2012 1:31 pm
Has thanked: 500 times
Been thanked: 841 times
Sex: Female

Re: URGENT SECURITY ANNOUNCEMENT!!

Post Number:#2  Postby Phebe » Fri Feb 24, 2017 3:36 pm

Here are a couple of sites that you may be able to use to find out if a particular website uses CloudFlare. This may help you figure out which websites you need to change your passwords on.

http://www.crimeflare.com/cfs.html#box (search box at bottom of page)
http://www.doesitusecloudflare.com/
User avatar
Phebe
Guru
Guru
 
Posts: 1405
Joined: Tue Oct 02, 2012 1:31 pm
Has thanked: 500 times
Been thanked: 841 times
Sex: Female


Return to All About CloudMeBaby.com

Who is online

Users browsing this forum: No registered users and 1 guest

cron