CloudBleed with millions of sites (and SecNews)

CloudBleed is the unofficial για ένα ζήτημα ασφαλείας που ανακαλύφθηκε στις 17 Φεβρουαρίου του 2017 και πλήττει τα reverse proxies της .

For those who don't know Cloudflare is one of the biggest companies offering CDN, DDOS protection, website performance, dedicated SSL and more. Cloudflare's services are used by more than 5,5 million websites according to the company. SecNews.gr is one of them.CloudBleed

Basic service is offered for free, but webmasters, organizations and large companies can upgrade for additional features and better protection.

The CloudBleed security loophole allowed servers to run "past the end of a buffer" that returned memory containing personal information. This information includes HTTP cookies, authentication tokens, HTTP Post bodies, and other sensitive data.

The subject was revealed by a researcher Google Project Zero, and has already been defined by Cloudflare.

The problem for Internet users is that the cookies they use to link to these sites or other data may have leaked. Although the problem has been fixed, the search engines have temporary data stored, and the intruders could collect them.

When Google announced the vulnerability to Cloudflare, it alerted other search engines warning them to clear cached search results. So search engines have reportedly "mixed up" cached data, but that does not mean that there is still no sensitive information available on the Internet.

It would be best to change passwords to all Cloudflare sites and services. This is of course not easy and it is rather time consuming to find out if the services and sites you visit use Cloudflare.

There is currently a list of one of his users GitHub   which displays all sites that use Cloudflare services. Some of them: Patreon, 4chan, Medium, Bitpay, News.ycombinator.com, uber.com, Yelp.com, uber.com and Greek Public.gr.

The online DoesItUseCloudflare it will also answer any of your questions about pages that you want to see if their data has leaked.

What about SecNews?

Visitors to SecNews.gr do not need to worry, as they do not have accounts on the site. The editors and administrators of the page, that they have already changed their passwords, they also use 2FA, for every connection to the site.

Visitors and members (those with an account) of major shopping websites using the CloudFlare service should change their passwords immediately, and if given the option to use audit of two factors.

To easily check which pages use Cloudflare you can use an add-on for and Chrome. The CloudBleed designed by the developer of NoSquint Plus, and will analyze your browser's browsing history to reveal any site page that Cloudflare uses.

This will allow you to find the pages that are considered dangerous data and change your passwords.

Download the Add-on

Firefox

Chrome

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).