Bitcoin Forum
June 16, 2019, 12:01:04 PM *
News: Latest Bitcoin Core release: 0.18.0 [Torrent] (New!)
 
   Home   Help Search Login Register More  
Pages: « 1 ... 1397 1398 1399 1400 1401 1402 1403 1404 1405 1406 1407 1408 1409 1410 1411 1412 1413 1414 1415 1416 1417 1418 1419 1420 1421 1422 1423 1424 1425 1426 1427 1428 1429 1430 1431 1432 1433 1434 1435 1436 1437 1438 1439 1440 1441 1442 1443 1444 1445 1446 [1447] 1448 1449 1450 1451 1452 1453 1454 1455 1456 1457 1458 1459 1460 1461 1462 1463 1464 1465 1466 1467 1468 1469 1470 1471 1472 1473 1474 1475 1476 1477 1478 1479 1480 1481 1482 1483 1484 1485 1486 1487 1488 1489 1490 1491 1492 1493 1494 1495 1496 1497 ... 1549 »
  Print  
Author Topic: Primedice.com | Creators of Dicing 🎲 | 29 Billion Bets | 112+ BTC Jackpot!  (Read 1918910 times)
bestdoggy11
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
March 08, 2018, 05:58:00 AM
Last edit: March 08, 2018, 06:17:59 AM by bestdoggy11
 #28921

No one is begging, since micro did mention he would be doing such for playrrs which he did and hats off to him, just asking that. There is no begging here and kindly folks leave your 2 cents to yourself. If micro does nor want to tip me since its just fair he tipped those effected then he will just say it himself, hey i cannot tip you.

Get onto a different topic.








Quote from: athena2007



link=topic=208986.msg31825994#msg31825994 date=1520487318
Ty for update.micro please confirm and if you cud tip me too...

Ty





We're working on getting the site back live. In the end we got lucky the attacker chose to put up a basic phishing site instead of launching a more sophisticated attack.

Players only lost 0.05 BTC as a result of this. If you made a deposit to the phishing site you must sign the address you sent from to claim a refund from us.


Here's what the attacker was able to do through his phishing site:
-Send Usernames/Passwords for users who logged in during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.

What attacker wasn't able to do
-Grab user tokens/sessions (local storage isn't shared between http & https versions)
-Access our DB, accounts, balances


We're taking our time to complete investigation and put things back up in a secure way. Currently we are unable to transfer the domain out of our registrar due to issues with them but given the way the account was targeted it shouldn't be possible for the hacker to regain access anymore (more on this later).
We're working on getting the site back live. In the end we got lucky the attacker chose to put up a basic phishing site instead of launching a more sophisticated attack.

Players only lost 0.05 BTC as a result of this. If you made a deposit to the phishing site you must sign the address you sent from to claim a refund from us.


Here's what the attacker was able to do through his phishing site:
-Send Usernames/Passwords for users who logged in during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.

What attacker wasn't able to do
-Grab user tokens/sessions (local storage isn't shared between http & https versions)
-Access our DB, accounts, balances


We're taking our time to complete investigation and put things back up in a secure way. Currently we are unable to transfer the domain out of our registrar due to issues with them but given the way the account was targeted it shouldn't be possible for the hacker to regain access anymore (more on this later).
Gosh does the begging ever stop.. leave admin to fix more important issues at hand,,, get a grip.
1560686464
Hero Member
*
Offline Offline

Posts: 1560686464

View Profile Personal Message (Offline)

Ignore
1560686464
Reply with quote  #2

1560686464
Report to moderator

0% MINING FEES FOR THE NEXT MONTH. GET PAID IN BTC, ETH, XMR or RVN.

www.cudominer.com Learn More
Easily run CudoOS from a USB flash drive.
Designed for rigs. Manage your mining remotely from Cudo Console.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
Stunna
Legendary
*
Offline Offline

Activity: 2268
Merit: 1116


Advisor @ Primedice.com, Stake.com


View Profile WWW
March 08, 2018, 08:27:50 AM
 #28922

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  Cool

Stake.com Fastest growing crypto casino
Primedice.com The original bitcoin instant dice game
Octoberian17
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
March 08, 2018, 08:42:49 AM
 #28923

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  Cool
http://image.ibb.co/hUGwOS/Poster.png

Thank you Stunna.. Welcome PD
BreachOfEuphoria
Newbie
*
Offline Offline

Activity: 23
Merit: 0


View Profile
March 08, 2018, 09:27:57 AM
Last edit: March 08, 2018, 09:41:06 AM by BreachOfEuphoria
 #28924

Good job on getting the site back  Smiley

I wanted to log in to change my password.
I'm getting a "Please contact support to recover your account"

Edit:I got the message when trying to recover my password, I wrote you an e-mail.

Can i recover my account by contacting you using this forum?
adaseb
Legendary
*
Offline Offline

Activity: 1988
Merit: 1129



View Profile
March 08, 2018, 10:00:45 AM
 #28925

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  Cool


Are you guys going to take any legal action against the hacker?

Even though not much was stolen, there was downtime which lead to profit loss.

Pretty sure the profit loss was much greater than 1 BTC.

.FORTUNE.JACK.
      ▄▄███████▄▄
   ▄████▀▀ ▄ ██████▄
  ████ ▄▄███ ████████
 █████▌▐███▌ ▀▄ ▀█████
███████▄██▀▀▀▀▄████████
█████▀▄▄▄▄█████████████
████▄▄▄▄ █████████████
 ██████▌ ███▀████████
  ███████▄▀▄████████
   ▀█████▀▀███████▀
      ▀▀██████▀▀
         
         █
...FortuneJack.com                                             
...THE BIGGEST BITCOIN GAMBLING SITE
       ▄▄█████████▄▄
    ▄█████████████████▄
  ▄█████████████████████▄
 ▄██
█████████▀███████████▄
██████████▀   ▀██████████
█████████▀       ▀█████████
████████           ████████
████████▄   ▄ ▄   ▄████████
██████████▀   ▀██████████
 ▀██
█████████████████████▀
  ▀██
███████████████████▀
    ▀█████████████████▀
       ▀▀█████████▀▀
#JACKMATE
WIN 1 BTC
▄█████████████████████████▄
███████████████████████████
███████████████████████████
██████████▀█████▀██████████
███████▀░░▀░░░░░▀░░▀███████
██████▌░░░░░░░░░░░░░▐██████
██████░░░░██░░░██░░░░██████
█████▌░░░░▀▀░░░▀▀░░░░▐█████
██████▄░░▄▄▄░░░▄▄▄░░▄██████
████████▄▄███████▄▄████████

███████████████████████████
███████████████████████████
▀█████████████████████████▀
MICRO
Legendary
*
Offline Offline

Activity: 1806
Merit: 1018


Stake.com


View Profile WWW
March 08, 2018, 10:04:42 AM
 #28926

Please be patient with support at this moment.

We are getting huge amount of tickets and for the first time answer time can be very slow.

Juggy777
Sr. Member
****
Offline Offline

Activity: 966
Merit: 344



View Profile
March 08, 2018, 10:12:56 AM
 #28927

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  Cool


I can understand what you'll must have gon through it's a shame that people do such kind of stuff, I'm sure PD bounce back stronger and faster.

It goes without saying people need to calm their horses before sending support tickets to them, they already have their hands full no point in rushing.

The good thing is PD database was not effected and I'm sure each matter will be resolved, good luck and wish the staff of PD strength to get over this mess.

BitDice[]               ▄▄███▄▄
           ▄▄██▀▀ ▄ ▀▀██▄▄
      ▄▄█ ▀▀  ▄▄█████▄▄  ▀▀ █▄▄
  ▄▄██▀▀     ▀▀ █████ ▀▀     ▀▀██▄▄
██▀▀ ▄▄██▀      ▀███▀      ▀██▄▄ ▀▀██
██  ████▄▄       ███       ▄▄████  ██
██  █▀▀████▄▄  ▄█████▄  ▄▄████▀▀█  ██
██  ▀     ▀▀▀███████████▀▀▀     ▀  ██
             ███████████
██  ▄     ▄▄▄███████████▄▄▄     ▄  ██
██  █▄▄████▀▀  ▀█████▀  ▀▀████▄▄█  ██
██  ████▀▀       ███       ▀▀████  ██
██▄▄ ▀▀██▄      ▄███▄      ▄██▀▀ ▄▄██
  ▀▀██▄▄     ▄▄ █████ ▄▄     ▄▄██▀▀
      ▀▀█ ▄▄  ▀▀█████▀▀  ▄▄ █▀▀
           ▀▀██▄▄ ▀ ▄▄██▀▀
               ▀▀███▀▀
        ▄▄███████▄▄
     ▄███████████████▄
    ████▀▀       ▀▀████
   ████▀           ▀████
   ████             ████
   ████ ▄▄▄▄▄▄▄▄▄▄▄ ████
▄█████████████████████████▄
██████████▀▀▀▀▀▀▀██████████
████                   ████
████                   ████
████                   ████
████                   ████
████                   ████
████▄                 ▄████
████████▄▄▄     ▄▄▄████████
  ▀▀▀█████████████████▀▀▀
        ▀▀▀█████▀▀▀
▄▄████████████████████████████████▄▄
██████████████████████████████████████
█████                            █████
█████                            █████
█████                            █████
█████                            █████
█████                     ▄▄▄▄▄▄▄▄▄▄
█████                   ▄█▀▀▀▀▀▀▀▀▀▀█▄
█████                   ██          ██
█████                   ██          ██
█████                   ██          ██
██████████████████▀▀███ ██          ██
 ████████████████▄  ▄██ ██          ██
   ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀ ██          ██
             ██████████ ██          ██
           ▄███████████ ██████▀▀██████
          █████████████  ▀████▄▄████▀
[/]
Betwrong
Legendary
*
Online Online

Activity: 1498
Merit: 1058



View Profile
March 08, 2018, 10:51:10 AM
 #28928

"Password successfully changed"  Smiley

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise. Smiley

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

.FORTUNE.JACK.
      ▄▄███████▄▄
   ▄████▀▀ ▄ ██████▄
  ████ ▄▄███ ████████
 █████▌▐███▌ ▀▄ ▀█████
███████▄██▀▀▀▀▄████████
█████▀▄▄▄▄█████████████
████▄▄▄▄ █████████████
 ██████▌ ███▀████████
  ███████▄▀▄████████
   ▀█████▀▀███████▀
      ▀▀██████▀▀
         
         █
...FortuneJack.com                                             
...THE BIGGEST BITCOIN GAMBLING SITE
       ▄▄█████████▄▄
    ▄█████████████████▄
  ▄█████████████████████▄
 ▄██
█████████▀███████████▄
██████████▀   ▀██████████
█████████▀       ▀█████████
████████           ████████
████████▄   ▄ ▄   ▄████████
██████████▀   ▀██████████
 ▀██
█████████████████████▀
  ▀██
███████████████████▀
    ▀█████████████████▀
       ▀▀█████████▀▀
#JACKMATE
WIN 1 BTC
▄█████████████████████████▄
███████████████████████████
███████████████████████████
██████████▀█████▀██████████
███████▀░░▀░░░░░▀░░▀███████
██████▌░░░░░░░░░░░░░▐██████
██████░░░░██░░░██░░░░██████
█████▌░░░░▀▀░░░▀▀░░░░▐█████
██████▄░░▄▄▄░░░▄▄▄░░▄██████
████████▄▄███████▄▄████████

███████████████████████████
███████████████████████████
▀█████████████████████████▀
lay666
Newbie
*
Offline Offline

Activity: 6
Merit: 0


View Profile
March 08, 2018, 11:19:20 AM
 #28929

"Password successfully changed"  Smiley

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise. Smiley

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!





I have 2fa and password, but  I cant log in
I contacted support, informed my email IP etc, dont know how much time need to check
))
MICRO
Legendary
*
Offline Offline

Activity: 1806
Merit: 1018


Stake.com


View Profile WWW
March 08, 2018, 11:38:02 AM
 #28930

"Password successfully changed"  Smiley

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise. Smiley

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

Hey,

Yeah we didn't have to do that and create a LOT of exstra work for us and for support but we want to make sure all our users are safe so that is done to protect you guys.

Atm we are changing it a bit so users with 2fa will be able to login normally. But we STRONGLY recommend you to change your password right after you login with 2fa and old password.

Also withdrawals are set to manual atm so if you have logged into phising site and got your password compromised and attacker somehow manages to login your balance will be safe and we will cancel the withdrawal he made after you contact support.

Please remember that we have millions of accounts on primedice and at this moment all support staff is in the office and working but we are getting huge amounts of new tickets so support will be a lot slower than normal.

I know you all got used to our super fast support with less than 60 seconds first reply time Smiley.
But at this moment we cant keep up to that standard.

Please be patient.

edit: One more thing if you did not have any balance on your account feel free to register NEW account and use that in the meantime.

Kargai
Jr. Member
*
Offline Offline

Activity: 295
Merit: 1


View Profile
March 08, 2018, 11:47:57 AM
 #28931

"Password successfully changed"  Smiley

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise. Smiley

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

Hey,

Yeah we didn't have to do that and create a LOT of exstra work for us and for support but we want to make sure all our users are safe so that is done to protect you guys.

Atm we are changing it a bit so users with 2fa will be able to login normally. But we STRONGLY recommend you to change your password right after you login with 2fa and old password.

Also withdrawals are set to manual atm so if you have logged into phising site and got your password compromised and attacker somehow manages to login your balance will be safe and we will cancel the withdrawal he made after you contact support.

Please remember that we have millions of accounts on primedice and at this moment all support staff is in the office and working but we are getting huge amounts of new tickets so support will be a lot slower than normal.

I know you all got used to our super fast support with less than 60 seconds first reply time Smiley.
But at this moment we cant keep up to that standard.

Please be patient.

edit: One more thing if you did not have any balance on your account feel free to register NEW account and use that in the meantime.

Thanks for all the hard work and the security.

Good luck to all the Support team for managing everything Smiley
JanpriX
Hero Member
*****
Offline Offline

Activity: 1036
Merit: 522

Buy The Fucking Dip


View Profile
March 08, 2018, 11:51:30 AM
 #28932

"Password successfully changed"  Smiley

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise. Smiley

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

Hey,

Yeah we didn't have to do that and create a LOT of exstra work for us and for support but we want to make sure all our users are safe so that is done to protect you guys.

Atm we are changing it a bit so users with 2fa will be able to login normally. But we STRONGLY recommend you to change your password right after you login with 2fa and old password.

Also withdrawals are set to manual atm so if you have logged into phising site and got your password compromised and attacker somehow manages to login your balance will be safe and we will cancel the withdrawal he made after you contact support.

Please remember that we have millions of accounts on primedice and at this moment all support staff is in the office and working but we are getting huge amounts of new tickets so support will be a lot slower than normal.

I know you all got used to our super fast support with less than 60 seconds first reply time Smiley.
But at this moment we cant keep up to that standard.

Please be patient.

edit: One more thing if you did not have any balance on your account feel free to register NEW account and use that in the meantime.

We definitely understand it Micro.  Wink We all know that many users are still registering to Primedice and most of them open new tickets every now and then. This is much expected because many people just got introduced to BTC and many of them got hooked to dice sites like PD. I've been changing my passwords every 3 months lately due to increased cases of hacked/phished accounts. Especially on those accounts that contain significant amount of BTC.
BreachOfEuphoria
Newbie
*
Offline Offline

Activity: 23
Merit: 0


View Profile
March 08, 2018, 05:11:58 PM
 #28933

Primedice support, Katarina and Vladimir has been very good at helping me recover my account today.
Katarina replied within 15 minutes.

I'm in again.

Thank you so much for your help Smiley
MICRO
Legendary
*
Offline Offline

Activity: 1806
Merit: 1018


Stake.com


View Profile WWW
March 08, 2018, 05:33:30 PM
Merited by suchmoon (1)
 #28934

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey! Smiley


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

xMossx
Newbie
*
Offline Offline

Activity: 128
Merit: 0


View Profile
March 08, 2018, 08:04:14 PM
 #28935

Great news! Guess I'll go change my password.
adaseb
Legendary
*
Offline Offline

Activity: 1988
Merit: 1129



View Profile
March 08, 2018, 08:21:53 PM
 #28936

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey! Smiley


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

I think what is really scary about this incident is imagine what could of happebed if the hackers weren't lazy.

They would at an unsuspecting time ( when PD dev are sleeping ) commit the hack and make the phishing site look for authentic.

When someone tried to login, they would go to the real PD and perform a withdraw.

The way the registrar handled this situation was very dangerous. Hopefully many Bitcoin sites and services can learn from this incident.

.FORTUNE.JACK.
      ▄▄███████▄▄
   ▄████▀▀ ▄ ██████▄
  ████ ▄▄███ ████████
 █████▌▐███▌ ▀▄ ▀█████
███████▄██▀▀▀▀▄████████
█████▀▄▄▄▄█████████████
████▄▄▄▄ █████████████
 ██████▌ ███▀████████
  ███████▄▀▄████████
   ▀█████▀▀███████▀
      ▀▀██████▀▀
         
         █
...FortuneJack.com                                             
...THE BIGGEST BITCOIN GAMBLING SITE
       ▄▄█████████▄▄
    ▄█████████████████▄
  ▄█████████████████████▄
 ▄██
█████████▀███████████▄
██████████▀   ▀██████████
█████████▀       ▀█████████
████████           ████████
████████▄   ▄ ▄   ▄████████
██████████▀   ▀██████████
 ▀██
█████████████████████▀
  ▀██
███████████████████▀
    ▀█████████████████▀
       ▀▀█████████▀▀
#JACKMATE
WIN 1 BTC
▄█████████████████████████▄
███████████████████████████
███████████████████████████
██████████▀█████▀██████████
███████▀░░▀░░░░░▀░░▀███████
██████▌░░░░░░░░░░░░░▐██████
██████░░░░██░░░██░░░░██████
█████▌░░░░▀▀░░░▀▀░░░░▐█████
██████▄░░▄▄▄░░░▄▄▄░░▄██████
████████▄▄███████▄▄████████

███████████████████████████
███████████████████████████
▀█████████████████████████▀
Xylber
Full Member
***
Offline Offline

Activity: 364
Merit: 113


Translator


View Profile WWW
March 08, 2018, 09:03:39 PM
 #28937

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey! Smiley


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

I think what is really scary about this incident is imagine what could of happebed if the hackers weren't lazy.

They would at an unsuspecting time ( when PD dev are sleeping ) commit the hack and make the phishing site look for authentic.

When someone tried to login, they would go to the real PD and perform a withdraw.

The way the registrar handled this situation was very dangerous. Hopefully many Bitcoin sites and services can learn from this incident.

In this case, Primedice can't be reached via IP: if they change the DNS, they can't find the authentic website.
Of course, your idea is valid and can be used in some websites.

shield132
Hero Member
*****
Offline Offline

Activity: 1134
Merit: 538


In bit we sler, Bitsler


View Profile
March 08, 2018, 09:14:36 PM
 #28938

Congrats guys, to be fair one of the biggest dice website was stopped because of that reason. Hope this won't happen anymore.
Wish you all the best, it won't affect you a,much but wonder who was against you, who did this shit job.
Do you plan to make serious legal actions against him?

adaseb
Legendary
*
Offline Offline

Activity: 1988
Merit: 1129



View Profile
March 08, 2018, 10:18:34 PM
 #28939

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey! Smiley


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

I think what is really scary about this incident is imagine what could of happebed if the hackers weren't lazy.

They would at an unsuspecting time ( when PD dev are sleeping ) commit the hack and make the phishing site look for authentic.

When someone tried to login, they would go to the real PD and perform a withdraw.

The way the registrar handled this situation was very dangerous. Hopefully many Bitcoin sites and services can learn from this incident.

In this case, Primedice can't be reached via IP: if they change the DNS, they can't find the authentic website.
Of course, your idea is valid and can be used in some websites.


Yes but this is not what happened is it?

Basically the registrar redirected the traffic to a different IP.

The old site was still accessible by the old IP.

The hacker would simply record the usernames and passwords and then go to the real Primedice website by the IP address.

Plus, it takes a few hours for DNS to update. It's not instant but bottle necked by the ISP

.FORTUNE.JACK.
      ▄▄███████▄▄
   ▄████▀▀ ▄ ██████▄
  ████ ▄▄███ ████████
 █████▌▐███▌ ▀▄ ▀█████
███████▄██▀▀▀▀▄████████
█████▀▄▄▄▄█████████████
████▄▄▄▄ █████████████
 ██████▌ ███▀████████
  ███████▄▀▄████████
   ▀█████▀▀███████▀
      ▀▀██████▀▀
         
         █
...FortuneJack.com                                             
...THE BIGGEST BITCOIN GAMBLING SITE
       ▄▄█████████▄▄
    ▄█████████████████▄
  ▄█████████████████████▄
 ▄██
█████████▀███████████▄
██████████▀   ▀██████████
█████████▀       ▀█████████
████████           ████████
████████▄   ▄ ▄   ▄████████
██████████▀   ▀██████████
 ▀██
█████████████████████▀
  ▀██
███████████████████▀
    ▀█████████████████▀
       ▀▀█████████▀▀
#JACKMATE
WIN 1 BTC
▄█████████████████████████▄
███████████████████████████
███████████████████████████
██████████▀█████▀██████████
███████▀░░▀░░░░░▀░░▀███████
██████▌░░░░░░░░░░░░░▐██████
██████░░░░██░░░██░░░░██████
█████▌░░░░▀▀░░░▀▀░░░░▐█████
██████▄░░▄▄▄░░░▄▄▄░░▄██████
████████▄▄███████▄▄████████

███████████████████████████
███████████████████████████
▀█████████████████████████▀
MICRO
Legendary
*
Offline Offline

Activity: 1806
Merit: 1018


Stake.com


View Profile WWW
March 08, 2018, 10:45:47 PM
 #28940

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey! Smiley


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

I think what is really scary about this incident is imagine what could of happebed if the hackers weren't lazy.

They would at an unsuspecting time ( when PD dev are sleeping ) commit the hack and make the phishing site look for authentic.

When someone tried to login, they would go to the real PD and perform a withdraw.

The way the registrar handled this situation was very dangerous. Hopefully many Bitcoin sites and services can learn from this incident.

In this case, Primedice can't be reached via IP: if they change the DNS, they can't find the authentic website.
Of course, your idea is valid and can be used in some websites.


Yes but this is not what happened is it?

Basically the registrar redirected the traffic to a different IP.

The old site was still accessible by the old IP.

The hacker would simply record the usernames and passwords and then go to the real Primedice website by the IP address.

Plus, it takes a few hours for DNS to update. It's not instant but bottle necked by the ISP

Well it would be hard to pull off we have 24/7 support which is also always monitoring the site so we would take quick actions at any time. They can always reach me if not all devs and admins.

Thats why having 24/7 support proved to be very important and useful and we are one of the few sites that have it.


Stunna will post more details on how it happened.

It was not even remotely our fault and you will know why soon.

I hope we handled it well in the best way possible for all of our users and even though this was not our fault all the transactions sent to the phishing address will be refunded.

Again thank you all for support on this and for helping us get that phishing waring so fast.

Pages: « 1 ... 1397 1398 1399 1400 1401 1402 1403 1404 1405 1406 1407 1408 1409 1410 1411 1412 1413 1414 1415 1416 1417 1418 1419 1420 1421 1422 1423 1424 1425 1426 1427 1428 1429 1430 1431 1432 1433 1434 1435 1436 1437 1438 1439 1440 1441 1442 1443 1444 1445 1446 [1447] 1448 1449 1450 1451 1452 1453 1454 1455 1456 1457 1458 1459 1460 1461 1462 1463 1464 1465 1466 1467 1468 1469 1470 1471 1472 1473 1474 1475 1476 1477 1478 1479 1480 1481 1482 1483 1484 1485 1486 1487 1488 1489 1490 1491 1492 1493 1494 1495 1496 1497 ... 1549 »
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!