|
clownius
|
 |
April 08, 2014, 04:18:04 PM |
|
Does anyone know if Cavirtex was affected by the bleeding heart SSL vulnerability?
This vulnerability also shows that Cavirtex should consider adding 2FA in order to withdraw (as a highjacked session would still be unable to withdraw without the Google Authenticator OTP).
Im not sure you guys realise just how widespread this vulnerability was......... Think just about every server on the Internet to start with. The only ones dodging it were ones more than two years behind on their updates. So guys if you use a site anywhere in a secure way it was probably vulnerable. once they fix it server side (and you fix it on your local systems) update your passwords. |
|
|
|
|
freedomno1
Legendary
 Offline
Activity: 1848
Merit: 1094
Learning the troll avoidance button :)
|
|
April 08, 2014, 04:39:50 PM |
|
Does anyone know if Cavirtex was affected by the bleeding heart SSL vulnerability?
This vulnerability also shows that Cavirtex should consider adding 2FA in order to withdraw (as a highjacked session would still be unable to withdraw without the Google Authenticator OTP).
Im not sure you guys realise just how widespread this vulnerability was......... Think just about every server on the Internet to start with. The only ones dodging it were ones more than two years behind on their updates. So guys if you use a site anywhere in a secure way it was probably vulnerable. once they fix it server side (and you fix it on your local systems) update your passwords. Good advice best to be secure and cautious with passwords and was still getting information on the exploit I answered my question tested it out with the heartbleed test http://filippo.io/Heartbleed/#www.cavirtex.comAll good, www.cavirtex.com seems not affected! |
Believing in Bitcoins and it's ability to change the world
|
|
|
cavirtex (OP)
Full Member
Offline
Activity: 143
Merit: 100
CAVIRTEX | Canadian Virtual Exchange
|
|
April 08, 2014, 04:44:02 PM |
|
Last night our development team patched our systems to protect against Heartbleed.
We have been following developments related to this bug very closely.
|
CAVIRTEX is Canada's #1 Bitcoin exchange with over 90 million CAD traded in our 3 years of operations. Visit https://www.cavirtex.com. |
|
|
Peter R
Legendary
Offline
Activity: 1162
Merit: 1012
|
|
April 08, 2014, 07:27:45 PM |
|
Last night our development team patched our systems to protect against Heartbleed.
We have been following developments related to this bug very closely.
Great. Thank you for the update. Have you guys considered adding 2FA before approving withdrawal requests (in addition to the existing 2FA for login)? I think this would give comfort to a lot of your customers. |
|
|
|
freedomno1
Legendary
Offline
Activity: 1848
Merit: 1094
Learning the troll avoidance button :)
|
|
April 09, 2014, 05:14:15 AM |
|
Last night our development team patched our systems to protect against Heartbleed.
We have been following developments related to this bug very closely.
Thanks for the update Regarding Bitcoinexpo in Toronto can you provide a livefeed of the expo or a recording after it is done for those of us who can not attend the conference Kind of want to see the virtex team in action and the general vibe of the event  http://bitcoinexpo.ca/ |
Believing in Bitcoins and it's ability to change the world
|
|
|
eyebuyyourcoinz
Newbie
Offline
Activity: 25
Merit: 0
|
|
April 09, 2014, 02:16:33 PM |
|
Last night our development team patched our systems to protect against Heartbleed.
We have been following developments related to this bug very closely.
Hi, without compromising your security protocols, can you elaborate on what steps were taken to patch your systems and why you are still using an SSL Server Certificate Issued On: 29/05/2013? Your Canadian competitor VoS renewed theirs a couple of days ago. |
|
|
|
|
|
|
_mr_e
Legendary
Offline
Activity: 817
Merit: 1000
|
|
April 09, 2014, 10:03:07 PM |
|
I missed most of this, are we going to be able to watch a recording afterwards? |
|
|
|
|
cavirtex (OP)
Full Member
Offline
Activity: 143
Merit: 100
CAVIRTEX | Canadian Virtual Exchange
|
|
April 09, 2014, 10:04:53 PM |
|
I missed most of this, are we going to be able to watch a recording afterwards? Yes, I believe the Senate will post a complete video of the meeting. I will post a link to the video once it becomes available (perhaps tomorrow). |
CAVIRTEX is Canada's #1 Bitcoin exchange with over 90 million CAD traded in our 3 years of operations. Visit https://www.cavirtex.com. |
|
|
_mr_e
Legendary
Offline
Activity: 817
Merit: 1000
|
|
April 09, 2014, 10:24:25 PM |
|
I missed most of this, are we going to be able to watch a recording afterwards? Yes, I believe the Senate will post a complete video of the meeting. I will post a link to the video once it becomes available (perhaps tomorrow). Well those last 20 min were awfully embarrassing.... for the senators. Was the whole thing that painful? Otherwise Joseph did well. Glad to see he's been working on speaking more slowly lately haha. |
|
|
|
|
cavirtex (OP)
Full Member
Offline
Activity: 143
Merit: 100
CAVIRTEX | Canadian Virtual Exchange
|
|
April 10, 2014, 12:32:46 AM |
|
I missed most of this, are we going to be able to watch a recording afterwards? Yes, I believe the Senate will post a complete video of the meeting. I will post a link to the video once it becomes available (perhaps tomorrow). Well those last 20 min were awfully embarrassing.... for the senators. Was the whole thing that painful? Otherwise Joseph did well. Glad to see he's been working on speaking more slowly lately haha. Ya, most of the Senators were struggling a little. One of the takeaways: Explaining Bitcoin to baby boomers can be challening. |
CAVIRTEX is Canada's #1 Bitcoin exchange with over 90 million CAD traded in our 3 years of operations. Visit https://www.cavirtex.com. |
|
|
cavirtex (OP)
Full Member
Offline
Activity: 143
Merit: 100
CAVIRTEX | Canadian Virtual Exchange
|
|
April 10, 2014, 12:34:43 AM |
|
Last night our development team patched our systems to protect against Heartbleed.
We have been following developments related to this bug very closely.
Great. Thank you for the update. Have you guys considered adding 2FA before approving withdrawal requests (in addition to the existing 2FA for login)? I think this would give comfort to a lot of your customers. Yes, we discussed this recently. I will be sure to bring it up again. |
CAVIRTEX is Canada's #1 Bitcoin exchange with over 90 million CAD traded in our 3 years of operations. Visit https://www.cavirtex.com. |
|
|
cavirtex (OP)
Full Member
Offline
Activity: 143
Merit: 100
CAVIRTEX | Canadian Virtual Exchange
|
|
April 10, 2014, 12:37:58 AM |
|
Last night our development team patched our systems to protect against Heartbleed.
We have been following developments related to this bug very closely.
Hi, without compromising your security protocols, can you elaborate on what steps were taken to patch your systems and why you are still using an SSL Server Certificate Issued On: 29/05/2013? Your Canadian competitor VoS renewed theirs a couple of days ago. Here is a statement from our lead developer: CAVirtEx has been following the heartbleed vulnerability closely. Our systems were patched on April 7th, the day the vulnerability was publicly announced. Our new SSL cert was installed early today to ensure future communication remain secure. Due to the nature of the vulnerability and like most services that were using OpenSSL, secrets such as passwords may have been exposed. While it's unlikely anything has been leaked, customers should consider changing their passwords and clearing browser cookies to reissue browser verification. |
CAVIRTEX is Canada's #1 Bitcoin exchange with over 90 million CAD traded in our 3 years of operations. Visit https://www.cavirtex.com. |
|
|
Swordsoffreedom
Legendary
Offline
Activity: 3164
Merit: 1153
Leading Crypto Sports Betting & Casino Platform
|
|
April 10, 2014, 06:26:01 AM |
|
Does this affect the online wallets of virtex as well?
Kind of curious since it is in the news bulletin and not sure how it works with company based wallets
|
| ..Stake.com.. | | | ▄████████████████████████████████████▄
██ ▄▄▄▄▄▄▄▄▄▄ ▄▄▄▄▄▄▄▄▄▄ ██ ▄████▄
██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██ ██████
██ ██████████ ██ ██ ██████████ ██ ▀██▀
██ ██ ██ ██████ ██ ██ ██ ██ ██
██ ██████ ██ █████ ███ ██████ ██ ████▄ ██
██ █████ ███ ████ ████ █████ ███ ████████
██ ████ ████ ██████████ ████ ████ ████▀
██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
██ ▀▀▀▀▀▀▀▀▀▀ ██
▀█████████▀ ▄████████████▄ ▀█████████▀
▄▄▄▄▄▄▄▄▄▄▄▄███ ██ ██ ███▄▄▄▄▄▄▄▄▄▄▄▄
██████████████████████████████████████████ | | | | | | ▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█ ▄▀▄ █▀▀█▀▄▄
█ █▀█ █ ▐ ▐▌
█ ▄██▄ █ ▌ █
█ ▄██████▄ █ ▌ ▐▌
█ ██████████ █ ▐ █
█ ▐██████████▌ █ ▐ ▐▌
█ ▀▀██████▀▀ █ ▌ █
█ ▄▄▄██▄▄▄ █ ▌▐▌
█ █▐ █
█ █▐▐▌
█ █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█ | | | | | | ▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀ ▐█▌ ▀█▄
██ ▐█▌ ██
████▄ ▄█████▄ ▄████
████████▄███████████▄████████
███▀ █████████████ ▀███
██ ███████████ ██
▀█▄ █████████ ▄█▀
▀█▄ ▄██▀▀▀▀▀▀▀██▄ ▄▄▄█▀
▀███████ ███████▀
▀█████▄ ▄█████▀
▀▀▀███▄▄▄███▀▀▀ | | | ..PLAY NOW.. |
|
|
|
|
|
|
bucktotal
|
|
April 10, 2014, 07:40:03 PM |
|
is it correct that the bitcoin withdrawal fee is still 0.001 ?
if so, why has this not been updated to 0.0001?
|
|
|
|
|
|
medicine
|
|
April 11, 2014, 05:28:53 AM |
|
Spotted an add on Bitcoin wisdom from those other guys using the Virtex name. Looks like they really trying to start a bitcoin company with the same name.
I guess they assumed that CaVirtex is the Canadian company's name.
|
|
|
|
|
BitPeak
Newbie
Offline
Activity: 3
Merit: 0
|
|
April 13, 2014, 07:52:58 PM |
|
Hi, I'm a long time lurker in the forum here, and a happy CaVirtex customer. I'm sorry if this has been addressed, I couldn't find anything about it from looking back in this thread. I recently received the email phishing attempt (including a Java malware attachment) mentioned in the April 8 posting here https://www.cavirtex.com/announcements . I would like to know what everyone else's opinion of this is and more specifically which bulk email provider leaked the database? Additionally, what other information was contained in that database? More to the point (and I have no reason to believe this at this time), how do we know that it was indeed a third party who leaked the info and not Virtex (or a rogue employee)? I want to re-iterate that I give the company the benefit of the doubt as all my dealings have been top notch so far. Thanks all. |
|
|
|
|
|
SgtMoth
|
|
April 15, 2014, 03:23:53 PM |
|
Dont do the email thing on the computer that has your wallet or any internet browsing. Isolate as much as possible. I learnt the hard way!
|
|
|
|
|
bitcoin carpenter
Legendary
Offline
Activity: 1582
Merit: 1001
|
|
April 16, 2014, 03:30:00 PM |
|
Was wondering if you guys are considering black coin
Other than its latest pump and dump it has been increasing at 5-10% per day with huge volume
It looks like a solid coin with a solid group of devs behind it.
No pre mine and all POS @ 1%
Last weekend during the pump it was doing 9000 btc trading days and has been averaging about 500 btc on normal days
Cheers
|
If your not actively using the technology behind your crypto investment,
IT IS A SCAM!!!!
|
|
|
|
