CloudBleed is the unofficial name for a security issue discovered on February 17th 2017 and affects its reverse proxies cloudflare.
For those who don't know Cloudflare is one of the biggest companies offering CDN, DDOS protection, web performance optimization technologies, Dedicated SSL και πολλά άλλα. Οι υπηρεσίες της Cloudflare χρησιμοποιούνται από περισσότερες από 5,5 εκατομμύρια ιστοσελίδες σύμφωνα με την εταιρεία. Το SecNews.gr is one of them.
The basic service is offered for free, but the Webmasters, organizations and large companies can upgrade for additional features and better protection.
The CloudBleed security flaw allowed servers to run “past the end of a buffer” που επέστρεφε memory που περιείχε προσωπικές πληροφορίες. Μεταξύ των πληροφοριών αυτών είναι τα HTTP cookies, authentication tokens, HTTP Post bodies, and other sensitive data.
The subject was revealed by a researcher Google Project Zero, and has already been defined by Cloudflare.
The problem for Internet users is that the cookies they use to link to these sites or other data may have leaked. Although the problem has been fixed, the search engines have temporary data stored, and the intruders could collect them.
When Google announced the vulnerability to Cloudflare, it alerted other search engines warning them to clear cached search results. So search engines have reportedly "mixed up" cached data, but that does not mean that there is still no sensitive information available on the Internet.
It would be a good idea to change passwords access on all sites and services that use Cloudflare. Of course, this is not easy and it is probably quite time-consuming to find out if the services and sites you visit use Cloudflare.
There is currently a list of one of his users GitHub which displays all sites that use Cloudflare services. Some of them: Patreon, 4chan, Medium, Bitpay, News.ycombinator.com, uber.com, Yelp.com, uber.com and Greek Public.gr.
That's it online tool DoesItUseCloudflare it will also answer any of your questions about pages that you want to see if their data has leaked.
What about SecNews?
SecNews.gr visitors do not have to worry because they do not have any accounts on the site. The authors and administrators of the page, in addition to having already changed their passwords, use 2FA for each link on the site.
Visitors and members (who have an account) of large shopping websites using the CloudFlare service will need to change passwords immediately, and if they are given the ability to use two-factor authentication.
To easily check which pages are using Cloudflare you can use an add-on for Firefox and Chrome. The CloudBleed designed by the developer of NoSquint Plus, and will analyze your browser's browsing history to reveal any site page that Cloudflare uses.
Αυτό θα σας επιτρέψει να βρείτε τις σελίδες που θεωρούνται επικίνδυνες διαρροής data και να αλλάξετε τους κωδικούς σας.
Download the Add-on