Welcome, Guest: Register On Nairaland / LOGIN! / Trending / Recent / New
Stats: 3,174,742 members, 7,892,932 topics. Date: Wednesday, 17 July 2024 at 08:38 PM

Serious Bug Exposes Sensitive Data From Millions Sites Sitting Behind Cloudflare - Programming - Nairaland

Nairaland Forum / Science/Technology / Programming / Serious Bug Exposes Sensitive Data From Millions Sites Sitting Behind Cloudflare (1396 Views)

How To Retrieve Data From An Api Using Fetch Api In Javascript / If You Interested In Learning And Earning From Bug Bounty Hacking, Jump Right In / My Ssl Certificate Isnt Working [cloudflare] (2) (3) (4)

(1) (Reply)

Serious Bug Exposes Sensitive Data From Millions Sites Sitting Behind Cloudflare by Slyr0x: 6:05am On Feb 26, 2017
A severe security vulnerability has been discovered in the CloudFlare content delivery network that has caused big-name websites to expose private session keys and other sensitive data.

CloudFlare, a content delivery network (CDN) and web security provider that helps optimize safety and performance of over 5.5 Million websites on the Internet, is warning its customers of the critical bug that could have exposed a range of sensitive information, including passwords, and cookies and tokens used to authenticate users.

Dubbed Cloudbleed, the nasty flaw is named after the Heartbleed bug that was discovered in 2014, but believed to be worse than Heartbleed.

The vulnerability is so severe that it not only affects websites on the CloudFlare network but affects mobile apps as well.

What exactly is "Cloudbleed," how it works, how are you affected by this bug, and how you can protect yourself? Read more here: http://forums.afrocybersec.com/threads/serious-bug-exposes-sensitive-data-from-millions-sites-sitting-behind-cloudflare.59/

Interestingly, Nairaland runs on Cloudflare. The consequence of this is: potentially Nairaland's traffic which obviously passes through Cloudflare (even https) might be public.
Re: Serious Bug Exposes Sensitive Data From Millions Sites Sitting Behind Cloudflare by Clitx(f): 6:31am On Feb 26, 2017
Interesting.

(1) (Reply)

Building An Ionic 3 Shopping Cart App With Firebase Realtime Database Part 2 / New Web Development Tutorials Blog / Want To Learn Programming ? This Is For You.

(Go Up)

Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health
religion celebs tv-movies music-radio literature webmasters programming techmarket

Links: (1) (2) (3) (4) (5) (6) (7) (8) (9) (10)

Nairaland - Copyright © 2005 - 2024 Oluwaseun Osewa. All rights reserved. See How To Advertise. 8
Disclaimer: Every Nairaland member is solely responsible for anything that he/she posts or uploads on Nairaland.