Can we have a list of casinos that made use of Cloudflare?

[sulendra12]

~snipped~

It doesn't hurt you much for doing this, only takes 5 minutes to do unless you are a lazy person.
That's highly recommended to reset your 2FA as well like ICONOMI's email said.

Gonna change my password now.

[adaseb]

One thing I dont understand is why we have to disable 2FA and re-enable 2FA if we were using it in the past? The secret backup 2FA code shouldn't of been leaked in anyway. When we put in the 6 digit code, its after some type of hash and you can't reverse engineer it.

Even if you knew a bunch of codes in sequential order. So can someone clarify why we need to disable and enable 2FA?

[BRE]

Hello, LuckyBit visitors! We are aware that LuckyBit is one of the sites affected by the CloudBleed Bug. We have performed a systemwide audit and determined that we are largely unaffected by the bug. Due to the on-chain nature of our game, no wallet data or personal information was placed at risk by the bug; only publicly available information would be available, so LuckyBit users have nothing to fear from their use of our site.

LuckyBit Micro and LuckyBit Derby are also unaffected directly - their backends were not subject to the bug. We are also aware that MoneyPot is one of the affected sites and have taken the necessary precautions as advised by their administration. You can always log out of LuckyBit Micro/Derby and log back in to generate a new token, and this will protect you against any potential data theft.

If you have questions or concerns, feel free to pop in to the chat at LuckyBit and ask your question.

[Lionidas]

I knew that Cloudbet used them but coinbase?
Oh this is worst then I expected it to be. And it just didn't effect these not so important bitcasino sites and exchanges and wallet sites as well.
Cloudbleed nice term to use for this utter failure of common sense on a massive scale here.
Expect law suits to follow if anyone loses millions of dollars in bitcoin theft because of this breach in trust of a company whose sole purpose was to protect their clients from attacks on their sites so not to have their client and customer's account information secure in the first place.

[ralle14]

One thing I dont understand is why we have to disable 2FA and re-enable 2FA if we were using it in the past? The secret backup 2FA code shouldn't of been leaked in anyway. When we put in the 6 digit code, its after some type of hash and you can't reverse engineer it.

Even if you knew a bunch of codes in sequential order. So can someone clarify why we need to disable and enable 2FA?

It's up to you if you want to reset your 2fa or not but as what zodiac said the chances of both your pw and 2fa getting leaked from the same site is zero so resetting isn't necessary but others still do this just to be on the safer side of things.

[ethereumhunter]

i think if we have activated our 2FA and change our password before, we can skip this step but i don't know is it affected to secure our account or not, i think its better we change it to prevent bad thing that might be happen to us. i hope that the bug is already fix so we don't have to thinking too much about this and we can continue to playing gambling games with safe.

[Slark]

It is not like your personal account details were leaked, the amount of sensitive data compromised by that security flaw is less than 0,00003%
If the service you are using is reliable they should send you a warning mail, that your account might be affected. If they didn't do it then, either:

1. They are confident it is not a problem and everything will be all right.
2. They don't want to cause panic and undermine consumer's trust in their service.
3. They are incompetent and don't care about security.

[lsqgoddess]

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

• 21.co
• 777coin.com
• 99bitcoins.com
• alphabaymarket.com
• betcoin.ag
• bitcasino.io
• bitcoin.com
• bitcoin.de
• bitcoin.it
• bitcoin.org
• bitcoincharts.com
• bitcoinvideocasino.com
• bitcoinwisdom.com
• bitfinex.com
• bitgo.com
• bitmain.com
• bitpanda.com
• bitpay.com
• bitrefill.com
• bitsler.com
• bitso.com
• bitstarz.com
• bittrex.com
• bitvest.io
• bitwage.com
• bitwala.io
• blockchain.com
• blockchain.info
• blockr.io
• brave.com
• btc-e.com
• btc.com
• bustabit.com
• cex.io
• chain.com
• cloudbet.com
• coinbase.com
• coincap.io
• coincorner.com
• coindesk.com
• coinmarketcap.com
• coinroll.com
• coins.ph
• cointelegraph.com
• crypto-games.net
• cryptocoinsnews.com
• cryptocompare.com
• cryptopay.me
• dash.org
• dicesites.com
• directbet.eu
• fortunejack.com
• getmonero.org
• just-dice.com
• kraken.com
• localbitcoins.com
• luckyb.it
• mbitcasino.com
• moneypot.com
• nitrogensports.eu
• paxful.com
• peerbet.org
• pocketdice.io
• poloniex.com
• primedice.com
• purse.io
• quoine.com
• rollin.io
• safedice.com
• shapeshift.io
• slock.it
• slushpool.com
• sportsbet.io
• trezor.io
• unocoin.com
• uphold.com
• vegascasino.io
• xapo.com

Very comprehensive list, thanks dude very much. Actually we need to modify our passwords, although it is unecessary because the probability of leaked info is extremely low, only 1 out of 3 million.

[e-coinomist]

I made a list of some bitcoin sites that use Cloudflare. While the chances are very small that your info was leaked, it can't hurt to change your passwords on these sites:

• 21.co

...

• xapo.com

Very comprehensive list, thanks dude very much. Actually we need to modify our passwords, although it is unecessary because the probability of leaked info is extremely low, only 1 out of 3 million.

bitwala, the xapo card, trezor even! The miningpool that I have been trusting the most. This is worse than heartbleed been. And one against a million isn't unlikely from a gambler's perspective.
Maybe bitcoins very own country has been exceptionally sensitive on DDoS attacks to run into this plot?
Just mentioning none of my other payment services (FIAT based) got affected.