|
dogedice.me (OP)
|
 |
November 27, 2017, 05:40:33 PM |
|
Hello,
Our system alerted us that someone tried to sign in to around ~200 accounts with a VALID password! Most accounts are safe as we require to confirm new device with email. However, it means that some casino was hacked and those data were used to sign in to our system.
Currently, we block those accounts proactively. Unfortunately, one user was affected as it seems that password was the same for email as well and the hacker was able to withdraw funds.
We recommend changing the passwords ASAP and turn on 2FA.
Regards,
BitDice Team.
|
|
|
|
|
|
|
|
|
|
|
Be very wary of relying on JavaScript for security on crypto sites. The site can change the JavaScript at any time unless you take unusual precautions, and browsers are not generally known for their airtight security.
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
milewilda
Legendary
 Offline
Activity: 3094
Merit: 1127
|
|
November 27, 2017, 05:50:01 PM |
|
Hello,
Our system alerted us that someone tried to sign in to around ~200 accounts with a VALID password! Most accounts are safe as we require to confirm new device with email. However, it means that some casino was hacked and those data were used to sign in to our system.
Currently, we block those accounts proactively. Unfortunately, one user was affected as it seems that password was the same for email as well and the hacker was able to withdraw funds.
We recommend changing the passwords ASAP and turn on 2FA.
Regards,
BitDice Team.
Thanks for the warning. 200 accounts with valid password thats really a serious breach. This is why i do really have confidence on having those email verification specially when an account been logged into a different IP. For Co-gamblers that do have similar credentials on most accounts being used better to changed password before its too late. Thank you again for the information given. |
|
|
|
s0lidus
Full Member
Offline
Activity: 909
Merit: 118
CryptoGames: Revamped Games, Multiple Coins
|
|
November 27, 2017, 06:39:04 PM |
|
2FA ftw! Always turn on 2FA security on accounts where money is involved.
|
|
|
|
|
btc_angela
|
|
November 27, 2017, 06:45:40 PM |
|
Hello,
Our system alerted us that someone tried to sign in to around ~200 accounts with a VALID password! Most accounts are safe as we require to confirm new device with email. However, it means that some casino was hacked and those data were used to sign in to our system.
Currently, we block those accounts proactively. Unfortunately, one user was affected as it seems that password was the same for email as well and the hacker was able to withdraw funds.
We recommend changing the passwords ASAP and turn on 2FA.
Regards,
BitDice Team.
Thanks for the warning. This is a serious breach indeed and good thing that Bitdice system can immediately alerted with this kind of attempt. This news should get out quickly to other members around to make appropriate actions. And 2FA may add another layer of security for us that's why it is important to really enabled it. |
| │ | ███████████████████████
███████████████████████
███████████████████████
███████████████████████
███▀▀▀█████████████████
███▄▄▄█████████████████
███████████████████████
███████████████████████
███████████████████████
█████████████████████
███████████████████
███████████████
████████████████████████ | ███████████████████████████
███████████████████████████
███████████████████████████
█████████▀▀██▀██▀▀█████████
█████████████▄█████████████
████████▄█████████▄████████
█████████████▄█████████████
█████████████▄█▄███████████
██████████▀▀█████████████
██████████▀█▀██████████
▀███████████████████▀
▀███████████████▀
█████████████████████████ | | | O F F I C I A L P A R T N E R S
▬▬▬▬▬▬▬▬▬▬
ASTON VILLA FC
BURNLEY FC | | | BK8? | | | .
..PLAY NOW.. |
|
|
|
|
devans
|
|
November 27, 2017, 08:25:15 PM |
|
What makes you believe that a casino was hacked? The breach could have occurred on any other site as well, could it not?
Unfortunately many people tend to reuse just a few familiar passwords across all of their accounts. This is the reason bustadice forces users to use a randomly generated password rather than allowing them to choose one themselves.
|
|
|
|
|
marlboroza
Legendary
Offline
Activity: 1932
Merit: 2270
|
|
November 27, 2017, 08:25:24 PM |
|
Do you have info which one? What makes you believe that a casino was hacked? The breach could have occurred on any other site as well, could it not?
Unfortunately many people tend to reuse just a few familiar passwords across all of their accounts. This is the reason bustadice forces users to use a randomly generated password rather than allowing them to choose one themselves.
Something similar happened few months ago https://bitcointalk.org/index.php?topic=1902543.0, passwords were stolen from bitsler. |
|
|
|
|
|
jpcfan
|
|
November 27, 2017, 09:25:48 PM |
|
damn these guys are good. they got my 13 doge from a site
|
| 120% | | 〈 | 50% | | ████████
████████
████████
████████
████████
████████
████████
████████
████████
████████
████████ | DUCK | | DICE | ████████
████████
████████
████████
████████
████████
████████
████████
████████
████████
████████ | | 〉 | | 〉 | |
|
|
|
iluvbitcoins
Legendary
Offline
Activity: 2198
Merit: 1150
Freedom&Honor
|
|
November 27, 2017, 10:48:56 PM |
|
Do you have info which one? What makes you believe that a casino was hacked? The breach could have occurred on any other site as well, could it not?
Unfortunately many people tend to reuse just a few familiar passwords across all of their accounts. This is the reason bustadice forces users to use a randomly generated password rather than allowing them to choose one themselves.
Something similar happened few months ago https://bitcointalk.org/index.php?topic=1902543.0, passwords were stolen from bitsler. Don't forget BetCoin.Ag Got breached myself too, never used the same password on multiple websites again. @BitDice Thanks for the heads up  People need to be aware how easily websites get hacked. Use password managers! |
Looking for a signature campaign.
|
|
|
|
icanscript
|
|
November 28, 2017, 06:28:59 AM |
|
I think that Google Authenticator of 2FA is more effective and safe.
Phone, quite another device. And it is unlikely to be hacked with a computer.
On many websites this works!
|
|
|
|
|
Bitinity
Legendary
Offline
Activity: 3052
Merit: 1310
|
|
November 28, 2017, 06:29:19 AM |
|
This is why we should have strong password with complicated combination and obviously setting 2fa will be the best thing to do. Using the same password and email to register is some sites is also not recommended. Indeed it is easy to remember if we use same email and password, that's the only reason why people do it but they forget about safety.
|
| | .
.Duelbits│SPORTS. | | | ▄▄▄███████▄▄▄
▄▄█████████████████▄▄
▄███████████████████████▄
███████████████████████████
█████████████████████████████
███████████████████████████████
███████████████████████████████
███████████████████████████████
█████████████████████████████
███████████████████████████
▀████████████████████████
▀▀███████████████████
██████████████████████████████ | | | | ██
██
██
██
██
██
██
██
██
██
██ | | | | ███▄██▄███▄█▄▄▄▄██▄▄▄██
███▄██▀▄█▄▀███▄██████▄█
█▀███▀██▀████▀████▀▀▀██
██▀ ▀██████████████████
███▄███████████████████
███████████████████████
███████████████████████
███████████████████████
███████████████████████
███████████████████████
▀█████████████████████▀
▀▀███████████████▀▀
▀▀▀▀█▀▀▀▀ | | OFFICIAL EUROPEAN
BETTING PARTNER OF
ASTON VILLA FC | | | | ██
██
██
██
██
██
██
██
██
██
██ | | | | 10% CASHBACK
100% MULTICHARGER | │ | | │ |
|
|
|
lite
Legendary
Offline
Activity: 1400
Merit: 1009
|
|
November 28, 2017, 04:25:06 PM |
|
Hello,
Our system alerted us that someone tried to sign in to around ~200 accounts with a VALID password! Most accounts are safe as we require to confirm new device with email. However, it means that some casino was hacked and those data were used to sign in to our system.
Currently, we block those accounts proactively. Unfortunately, one user was affected as it seems that password was the same for email as well and the hacker was able to withdraw funds.
We recommend changing the passwords ASAP and turn on 2FA.
Regards,
BitDice Team.
Thanks for the heads up! i never use same password on sites and i always have 2fa enabled, i feel safe.  i always choose 2 fa, what do you think guys this is good choise right?
Yes, absolutely. although 2fa based on phone call/sms is insecure, it's better to use google authenticator. |
|
|
|
|
LEINADbtc
Member
Offline
Activity: 240
Merit: 10
|
|
November 28, 2017, 04:32:18 PM |
|
Damn this is crazy.
I never leave coins on a casino without 2fa.
You shouldn't too.
Glad u had 2fa..
|
|
|
|
|
badjacks99
|
|
November 28, 2017, 05:28:09 PM |
|
i always choose 2 fa, what do you think guys this is good choise right?
Oh yeah any small steps you can take to secure your account is always a bonus. Unique password with words, numbers and characters can still be very vulnerable. I would always recommend to use two factor authentication when available. |
|
|
|
|
adaseb
Legendary
Offline
Activity: 3738
Merit: 1708
|
|
November 28, 2017, 06:34:41 PM |
|
I don't think it was a casino or bitcointalk forum. I think this is the Bitmain breach that happened a few months ago.
They barely released any details of the hack but if you used the same username or email, you would get many failed logging attempts to many bitcoin exchanges and services.
|
|
|
|
TengoNakagata
Newbie
Offline
Activity: 2
Merit: 0
|
|
November 28, 2017, 10:20:54 PM |
|
My password is too strong to be destroyed. password1337 is too powerful for the hackers out there!
That's a problem of the common user, they mostly use the same password for everything. at least add the 2FA, I know it's a little bothering, but it's still something that saves your cash.
|
|
|
|
|
|
Lionidas
|
|
November 29, 2017, 01:43:19 AM |
|
This is a warning to most people who hold their funds in their casino accounts to withdraw them as soon as they can so not to have themselves fall victim to these type of hacker attacks on the bitcoin casinos where they go to.
It can happen to any casino site and not just this one mentioned.
|
|
|
|
|
MinerHQ
Legendary
Offline
Activity: 1456
Merit: 1023
|
|
November 29, 2017, 01:49:29 AM |
|
This is a warning to most people who hold their funds in their casino accounts to withdraw them as soon as they can so not to have themselves fall victim to these type of hacker attacks on the bitcoin casinos where they go to.
It can happen to any casino site and not just this one mentioned.
Nothing wrong in holding your money on a trusted gambling sites for some time if you plan to gamble again. But before you load your money to any online site you should enable 2fa function which will protect from these kinds of hacks. Also, don't keep the same password for your casino account and email id. |
|
|
|
|
Stunna
Legendary
Offline
Activity: 3192
Merit: 1278
Primedice.com, Stake.com
|
|
November 29, 2017, 02:02:36 AM |
|
I think that Google Authenticator of 2FA is more effective and safe.
Phone, quite another device. And it is unlikely to be hacked with a computer.
On many websites this works!
Cheers for heads up, another reason to use 2FA and not re-use passwords. |
|
|
|
chris200x9
Legendary
Offline
Activity: 1316
Merit: 1011
|
|
November 29, 2017, 06:27:50 AM |
|
i always choose 2 fa, what do you think guys this is good choise right?
Oh yeah any small steps you can take to secure your account is always a bonus. Unique password with words, numbers and characters can still be very vulnerable. I would always recommend to use two factor authentication when available. How strong your pass is not so important if you enable 2fa security feature in your account because it will protect from the hackers to login into your account. The main reason for these things to happen is people use the same combination of email and pass to many sites to remember easily. Need to learn from these mistakes. |
|
|
|
|
veleten
Legendary
Offline
Activity: 2016
Merit: 1106
|
|
November 29, 2017, 11:34:57 AM |
|
it can't be a casino,usually they do not store passwords in a plain form,just the hashes
also "bitsler hack" was not proven,since there was no evidence to confirm it,just the "hacker's" claim
never ever reuse your passwords
invest in a simple password manager or even get one for free (like lastpass,for example)
and don't register at dubious mining,free bitcoin doublers etc. sites
|
|
|
|
|
