mentaken
Member
Offline
Activity: 63
Merit: 10
|
|
July 07, 2016, 10:26:16 AM |
|
As per the email, Was the cloudbet database hacked ?
The funds and email details of Cloudbet are not compromised. It is whether the email address of a player of theirs is compromised or not. Have you been careless? Do you use the same password across sites? Do you use 2FA? etc. Didn't use 2FA. I am on the list of haveibeenpwned.com, but I did use another password for Cloudbet. So I don't understand how they did it.
|
|
|
|
spiz0r
|
|
July 07, 2016, 12:06:20 PM |
|
I also received a mail, that my password got changed. Anybody knows more about the "list of usernames and passwords" what posted online? From what site they got it?
Hi spiz0r, If you'd like to check if your email address was in any leaked lists, this is a useful resource: haveibeenpwned.com Cheers, Cloudbet Thanks for the info. I am lucky because I am not on the list.
|
|
|
|
ndnh
Legendary
Offline
Activity: 1302
Merit: 1005
New Decentralized Nuclear Hobbit
|
|
July 07, 2016, 06:14:10 PM |
|
Didn't use 2FA. I am on the list of haveibeenpwned.com, but I did use another password for Cloudbet. So I don't understand how they did it.
On the site you will be able to see the breaches in which your email (and possibly other information) was leaked. If you use the same password anywhere else, secure them now. Example: 1@google.com Oh no — pwned! Pwned on 5 breached sites and found 2 pastes (subscribe to search sensitive breaches) Notify me when I get pwned Donate Breaches you were pwned in A "breach" is an incident where a site's data has been illegally accessed by hackers and then released publicly. Review the types of data that were compromised (email addresses, passwords, credit cards etc.) and take appropriate action, such as changing passwords.
Adobe logo Adobe: In October 2013, 153 million Adobe accounts were breached with each containing an internal ID, username, email, encrypted password and a password hint in plain text. The password cryptography was poorly done and many were quickly resolved back to plain text. The unencrypted hints also disclosed much about the passwords adding further to the risk that hundreds of millions of Adobe customers already faced.
Compromised data: Email addresses, Password hints, Passwords, Usernames Gamerzplanet logo Gamerzplanet: In approximately October 2015, the online gaming forum known as Gamerzplanet was hacked and more than 1.2M accounts were exposed. The vBulletin forum included IP addresses and passwords stored as salted hashes using a weak implementation enabling many to be rapidly cracked.
Compromised data: Email addresses, IP addresses, Passwords, Usernames Lifeboat logo Lifeboat: In January 2016, the Minecraft community known as Lifeboat was hacked and more than 7 million accounts leaked. Lifeboat knew of the incident for three months before the breach was made public but elected not to advise customers. The leaked data included usernames, email addresses and passwords stored as straight MD5 hashes.
Compromised data: Email addresses, Passwords, Usernames MySpace logo MySpace: In approximately 2008, MySpace suffered a data breach that exposed almost 360 million accounts. In May 2016 the data was offered up for sale on the "Real Deal" dark market website and included email addresses, usernames and SHA1 hashes of the first 10 characters of the password converted to lowercase and stored without a salt. The exact breach date is unknown, but analysis of the data suggests it was 8 years before being made public.
Compromised data: Email addresses, Passwords, Usernames VK logo VK: In approximately 2012, the Russian social media site known as VK was hacked and almost 100 million accounts were exposed. The data emerged in June 2016 where it was being sold via a dark market website and included names, phone numbers email addresses and plain text passwords.
Compromised data: Email addresses, Names, Passwords, Phone numbers Pastes you were found in A "paste" is information that has been published to a publicly facing website designed to share content, usually anonymously. Often these are indicators of a data breach so review the paste and determine if your account has been compromised then take appropriate action such as changing passwords. Pastes are often removed shortly after having been posted. Read more on the pastes page.
Paste title Date Emails letsencrypt leaked emails LE fail 15 Jun 2016, 13:59 1,233 No title 20 Aug 2015, 23:15 1,269 Paste title Date Emails letsencrypt leaked emails LE fail 15 Jun 2016, 13:59 1,233 No title 20 Aug 2015, 23:15 1,269 It tracks only public pastes etc. Not appearing on it does not necessarily mean nothing was pwned. Appearing on it does not necessarily mean your password was leaked (possible), but yes, your email was.
|
|
|
|
trafficolaa
Legendary
Offline
Activity: 1008
Merit: 1000
|
|
July 07, 2016, 06:20:45 PM |
|
I am also got confused to receive that email your password has been reset, is that phishing email for attempt to steal our account information or our email and password got leaked due very poor site security, is there I have to reset the my account password?
|
|
|
|
jack1111
|
|
July 07, 2016, 06:50:32 PM |
|
I am also got confused to receive that email your password has been reset, is that phishing email for attempt to steal our account information or our email and password got leaked due very poor site security, is there I have to reset the my account password?
it is geniune e-mail , I also received it , and tried to investigate , check their twitter account , they post that some accounts have been uncovered . in any case you won't lose anything if you changed your password . their tweet link : https://twitter.com/Cloudbet/status/750643845121970176
|
|
|
|
ndnh
Legendary
Offline
Activity: 1302
Merit: 1005
New Decentralized Nuclear Hobbit
|
|
July 07, 2016, 07:03:13 PM |
|
I am also got confused to receive that email your password has been reset, is that phishing email for attempt to steal our account information or our email and password got leaked due very poor site security, is there I have to reset the my account password?
Cloudbet reset the passwords of all users when they came upon a db leak of another website/company because some of the users may have used the same password for both (and other ones? If so that is up to you) the accounts. It is all in the email.
|
|
|
|
JasonXG
|
|
July 07, 2016, 09:48:33 PM |
|
I love lice casinos, they so much fun. Its nice to see an actual human and they so pretty. Would much rather lose my money like that the a virtual table with noretty girls to distract me. xP
|
|
|
|
forzendiablo
Legendary
Offline
Activity: 1526
Merit: 1000
the grandpa of cryptos
|
|
July 08, 2016, 01:05:10 AM |
|
I am also got confused to receive that email your password has been reset, is that phishing email for attempt to steal our account information or our email and password got leaked due very poor site security, is there I have to reset the my account password?
Cloudbet reset the passwords of all users when they came upon a db leak of another website/company because some of the users may have used the same password for both (and other ones? If so that is up to you) the accounts. It is all in the email. any idea which one was it?
|
yolo
|
|
|
syndria
|
|
July 08, 2016, 02:40:24 AM |
|
I received too the same email with others and i thought it as kind of phising site at first but when i tried to open my cloudbet account even the password i entered is correct i can no longer able to open it.
|
|
|
|
zend7
|
|
July 08, 2016, 03:11:41 AM |
|
I received too the same email with others and i thought it as kind of phising site at first but when i tried to open my cloudbet account even the password i entered is correct i can no longer able to open it.
So they have deleted everybody's previous login passwords? You must create a new password to login into that site using your account? I find that a horrible way to prevent people from accessing you account. Resetting their entire userbase passwords is just bad management to me.
|
|
|
|
coingamblingreviews
Legendary
Offline
Activity: 1043
Merit: 1032
★Bitcoin Gambling Reviews★
|
|
July 08, 2016, 05:08:23 AM |
|
I also received a mail, that my password got changed. Anybody knows more about the "list of usernames and passwords" what posted online? From what site they got it?
Hi spiz0r, If you'd like to check if your email address was in any leaked lists, this is a useful resource: haveibeenpwned.com Cheers, Cloudbet Noticed I am also on the list of pawned individuals... time to change all passwords and get 2fa on everything
|
|
|
|
mentaken
Member
Offline
Activity: 63
Merit: 10
|
|
July 08, 2016, 05:32:51 AM |
|
Didn't use 2FA. I am on the list of haveibeenpwned.com, but I did use another password for Cloudbet. So I don't understand how they did it.
On the site you will be able to see the breaches in which your email (and possibly other information) was leaked. If you use the same password anywhere else, secure them now. Example: 1@google.com Oh no — pwned! Pwned on 5 breached sites and found 2 pastes (subscribe to search sensitive breaches) Notify me when I get pwned Donate Breaches you were pwned in A "breach" is an incident where a site's data has been illegally accessed by hackers and then released publicly. Review the types of data that were compromised (email addresses, passwords, credit cards etc.) and take appropriate action, such as changing passwords.
Adobe logo Adobe: In October 2013, 153 million Adobe accounts were breached with each containing an internal ID, username, email, encrypted password and a password hint in plain text. The password cryptography was poorly done and many were quickly resolved back to plain text. The unencrypted hints also disclosed much about the passwords adding further to the risk that hundreds of millions of Adobe customers already faced.
Compromised data: Email addresses, Password hints, Passwords, Usernames Gamerzplanet logo Gamerzplanet: In approximately October 2015, the online gaming forum known as Gamerzplanet was hacked and more than 1.2M accounts were exposed. The vBulletin forum included IP addresses and passwords stored as salted hashes using a weak implementation enabling many to be rapidly cracked.
Compromised data: Email addresses, IP addresses, Passwords, Usernames Lifeboat logo Lifeboat: In January 2016, the Minecraft community known as Lifeboat was hacked and more than 7 million accounts leaked. Lifeboat knew of the incident for three months before the breach was made public but elected not to advise customers. The leaked data included usernames, email addresses and passwords stored as straight MD5 hashes.
Compromised data: Email addresses, Passwords, Usernames MySpace logo MySpace: In approximately 2008, MySpace suffered a data breach that exposed almost 360 million accounts. In May 2016 the data was offered up for sale on the "Real Deal" dark market website and included email addresses, usernames and SHA1 hashes of the first 10 characters of the password converted to lowercase and stored without a salt. The exact breach date is unknown, but analysis of the data suggests it was 8 years before being made public.
Compromised data: Email addresses, Passwords, Usernames VK logo VK: In approximately 2012, the Russian social media site known as VK was hacked and almost 100 million accounts were exposed. The data emerged in June 2016 where it was being sold via a dark market website and included names, phone numbers email addresses and plain text passwords.
Compromised data: Email addresses, Names, Passwords, Phone numbers Pastes you were found in A "paste" is information that has been published to a publicly facing website designed to share content, usually anonymously. Often these are indicators of a data breach so review the paste and determine if your account has been compromised then take appropriate action such as changing passwords. Pastes are often removed shortly after having been posted. Read more on the pastes page.
Paste title Date Emails letsencrypt leaked emails LE fail 15 Jun 2016, 13:59 1,233 No title 20 Aug 2015, 23:15 1,269 Paste title Date Emails letsencrypt leaked emails LE fail 15 Jun 2016, 13:59 1,233 No title 20 Aug 2015, 23:15 1,269 It tracks only public pastes etc. Not appearing on it does not necessarily mean nothing was pwned. Appearing on it does not necessarily mean your password was leaked (possible), but yes, your email was. As I said, I did use another password. I knew that list already. The only breach where they could have my password from is the google account hack. But my passwords and email password are never the same. It's easy for Cloudbet to point at this website. "Hey, it's your fault, you are on that website, change your password !". I don't know how the hacker did this in my case, but there are some serious security issues at Cloudbet. That's for sure.
|
|
|
|
jack1111
|
|
July 08, 2016, 10:50:07 AM Last edit: July 08, 2016, 11:39:01 AM by jack1111 |
|
I want to ask about the EURO bet challenge competition , you have not provided any statistics , like how many participants , and how will divide the prize pool. If I correctly expected the final to be between France and Portugal , how much I will earn ? and when the prizes will be credited to the winner accounts?
|
|
|
|
mixan
Legendary
Offline
Activity: 966
Merit: 1000
TRUMP IS DOING THE BEST! MAKE AMERICA GREAT AGAIN!
|
|
July 08, 2016, 11:06:14 AM |
|
I am also got confused to receive that email your password has been reset, is that phishing email for attempt to steal our account information or our email and password got leaked due very poor site security, is there I have to reset the my account password?
it is geniune e-mail , I also received it , and tried to investigate , check their twitter account , they post that some accounts have been uncovered . in any case you won't lose anything if you changed your password . their tweet link : https://twitter.com/Cloudbet/status/750643845121970176I got this same sort of email today and thought it was just a spam email. To get you to click the link to change your password so too key log your account. So I just ignored it. But now I see that is was because of a database breach. That is shame as they had their wallet hacked just a year ago. So their security people have not learned a thing from that.
|
The parasite hates three things: free markets, free will, and free men.
|
|
|
Karpeles
Legendary
Offline
Activity: 1162
Merit: 1000
|
|
July 08, 2016, 11:13:59 AM |
|
I am also got confused to receive that email your password has been reset, is that phishing email for attempt to steal our account information or our email and password got leaked due very poor site security, is there I have to reset the my account password?
Just to be safe better don't click in any of the links in the mail and go to cloudbet's site by tipping the address in your browser and change your password. One way or another it might be compromised(either the email is true or the site has been hacked and your data has been compromised)
|
|
|
|
grandFX
Legendary
Offline
Activity: 1946
Merit: 1007
|
|
July 08, 2016, 11:17:35 AM |
|
The same with me, I also received an email YOUR CLOUDBET PASSWORD HAS BEEN CHANGED
|
|
|
|
Workout1198
Newbie
Offline
Activity: 57
Merit: 0
|
|
July 08, 2016, 06:16:00 PM |
|
Hi cloudbet I placed a wager in the morning on a snooker natch for . 03 when I placed wager it said score was 3 to 3 25 seconds score gets changed to 4 to 2 and match is over. This is impossible unless score was listed wrong please fix
|
|
|
|
yigit
Newbie
Offline
Activity: 18
Merit: 0
|
|
July 08, 2016, 08:54:19 PM |
|
Hi,
Me threw the mail I can't access my account for 3 days like that and it doesn't mail my Hotmail address. Approximately 40 $ of my money on and slept on top. Definitely I don't recommend this site anymore.
Thanks for reaching out to us.
At Cloudbet we take your security and privacy very seriously. As part of our routine monitoring, we discovered a list of email addresses and passwords posted online. While the list was not Cloudbet-related, we know that many customers reuse their passwords on multiple websites. Since we believe your email addresses and passwords may have been on the list, we have assigned a temporary password to your Cloudbet account out of an abundance of caution. If you had 2-Step Authentication enabled, your password has NOT been reset.
If you did not have 2-Step Authentication enabled, you will need to reset your password when you return to the Cloudbet site. To reset your password, click "Forgot your password?" at the top of any page on Cloudbet.com. After you enter your email address, you will receive an email containing a personalized link. Click the link from the email and follow the directions provided.
Your new password will be effective immediately. We recommend that you choose a password that you have never used with any website.
We also highly recommend that you also enable Cloudbet's 2-Step Authentication, a feature that adds an extra layer of security to your account. In addition to entering your password, 2-Step Authentication requires you to enter a unique security code during sign in. To learn more about 2-Step Authentication, go to Cloudbet.com, go to My Account, and click Account Settings, and then click Enable 2-Step Authentication.
|
|
|
|
Mongwapogi
|
|
July 09, 2016, 01:54:15 AM |
|
What's happening on Cloudbet? I never change my password, but now the site said "Incorrect username or password". Please secured our bets please. Now bettors will leave your site.
|
|
|
|
Robertqueen2
|
|
July 09, 2016, 06:59:59 AM |
|
What's happening on Cloudbet? I never change my password, but now the site said "Incorrect username or password". Please secured our bets please. Now bettors will leave your site. They have changed some account passwords for security reasons , I think they sent an e-mail to you about that , check your e-mail and you will know every thing , or you can insert your e-mail in this site : https://haveibeenpwned.com/ then click Pwend to check if your account has been uncovered
|
|
|
|
|