[READ] CloudFlare Security Bug

[buildblox]

For everyone using CloudFlare, please read this:

CloudFlare had a major bug in its HTML parser. Because of this bug, private information, such as POST data, were leaked to the browser and cached by search engines, such as Google. If you are running a site under CloudFlare, it is suggested that you fully purge your cache. https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/

Additionally, if you use Discord, please read this:
https://blog.discordapp.com/safety-jim-psa-cloudflare-security-issue-77a4ecc48298#.49f3d0psa

It is highly recommended that you change passwords on any sites you suspect using CloudFlare.

 

[wolfgirlfan]

https://github.com/pirate/sites-using-cloudflare

^^ list of all sites using cloudflare, if anyone needs it.

 

[buildblox]

We are fucked

No kidding

 

[nick]

Luckily I was only registered to discordapp.com, pastebin.com and hackforums.net
If I only had the Mobile Application of Authy am I safe? as the website was not protected

 

[lAkjtzAZ0]

We are fucked

how? 2fa + changing your password = you're good? Plus, the likelyhood that your information was leaked is really, really low. Only a small majority of people using services on cloudflare *can* be affected.

 

[lAkjtzAZ0]

Most sites dont use 2fa and changing passwords on all sites is hard

a lot of sites I use on cloudflare have 2fa so I'm good. Sure changing passwords sucks but would you rather risk losing everything? The chance that you or anyone else on mcm were affected in any way is super slim however it's still there, luckily I don't use many sites that were possible affected. It sucks but it's life I guess :/