Secutiry AdvistoryDue to a
memory leaking bug at Cloudflare we advise all our users take the following actions:
- If you have enabled two-factor authentication less than 6 months ago, please disable and re-enable it to receive a new key. Cloudflare may have leaked your key to random pages on the internet.
- Change your password on Bitvest and any other sites which use Cloudflare
- Log out and then back in again, especially if you use the remember me feature.
It is quite unlikely any of our users have been affected, but we advise all users to do so just in case. We also advise following the same procedure (along with changing your password) on any other sites you may use.
Edit: I have received this from Cloudflare. We seem to not have been effected.
Your domain is not one of the domains where we have discovered exposed data in any third party caches. The bug has been patched so it is no longer leaking data. However, we continue to work with these caches to review their records and help them purge any exposed data we find. If we discover any data leaked about your domains during this search, we will reach out to you directly and provide you full details of what we have found.