DaDice.com - Next Gen Social Gambling Dice Experience | Progressive Jackpot

[Da_Dice_Staff]

How to invest in the site?

You can send a mail via our support function there mate and chat to the team that way

So you are accepting investors? I thought that the reason you "didn't have to" show your cold storage addresses was that you are no longer accepting public investors.

Indeed. No public direct investors. We can do so privately under discretion should someone wish to enquire. But as it's not a direct feature to the public we are still not obligated except to those private individuals that still wish to do so

[SebastianJu]

but the site is sure now or is under attack ? Because later i read this scrypt "dadice is hacked" the site have a auto logout.
now can i enter with username e password without problem or i can change later?

As far as i understood it only the chat feature was hacked. Thats an independent tool that is not connected to the website. So the core website is safe. At least thats what i was told.

That's correct yes mate. The dev is still busy checking everything and will keep us all up to date on that mate

Yes, i see it. I only see it when i check back on the autopilot i use to leveling up and it claims it is rolling but when i stop it only 96 rolls happened. Probably some work is done so that the autopilot is stopped without notice.

maybe its just an option to reduce faucet builders amount from farming faucet accounts

No. With the autopilot one can set up betting automatically. Even without an ending. I do that in order to level up because then i get a higher affiliate profit... in case i will get a good betting player at one time.

[bodgybrothers]

How to invest in the site?

You can send a mail via our support function there mate and chat to the team that way

So you are accepting investors? I thought that the reason you "didn't have to" show your cold storage addresses was that you are no longer accepting public investors.

Indeed. No public direct investors. We can do so privately under discretion should someone wish to enquire. But as it's not a direct feature to the public we are still not obligated except to those private individuals that still wish to do so

So if someone invests how do they know you aren't diluting their investment with some false numbers? You must surely show them the coins currently invested to prove you are not ripping them off.

[bodgybrothers]

but the site is sure now or is under attack ? Because later i read this scrypt "dadice is hacked" the site have a auto logout.
now can i enter with username e password without problem or i can change later?

As far as i understood it only the chat feature was hacked. Thats an independent tool that is not connected to the website. So the core website is safe. At least thats what i was told.

That's correct yes mate. The dev is still busy checking everything and will keep us all up to date on that mate

That's not correct at all. If someone can run JS on client computers then you have the most serious of problems. Anyone able to run code on a large number of connected computers can do anything they want on the users computer. The fact that you dumb this down to only being a "Chat attack", and that these systems are separate, is lying to your customers. It shows you are just lying every time you post something here. The facts are, someone was able to run code on the users computers and was able to clean out the hot wallet. Albeit a very small hot-wallet. I have checked your history and saw this:
 
The time of this attack seemed to have cleaned out your hot wallet. circled in red.


Here is the evidence of the hackers address that got the last 0.008btc in your hot wallet. Why anyone would do this for 0.008btc is beyond me. The most you can get even today is 0.3. There is basically no money in this casino to steel.
https://blockchain.info/address/1Nu7zXeUEV1aBzVQCtY4unDiFJFxdRSN9b


If anyone genuinely still believes these guys, I would be shocked. They try to lower the seriousness of these attacks by saying the systems are separate. But the fact someone just ran code on users computers and probably the developers computer could hold some serious issues. Another question is, why do they say its a chat attack. Do they know that for sure or just making it up? Maybe because JS injections need some communication to take place and that is why they blame the chat. Only a very small value of bitcoin was taken, but DaDice still hasn't told us what else was taken, or what code ran on their users computers. Maybe because they don't know, or they don't care.

What a joke this site is. Every week something surfaces that makes it even more sketchy than before.

[waterpile]

What a joke this site is. Every week something surfaces that makes it even more sketchy than before.

As long as they keep on paying their sig participants, all is good. 

seriously man.. you don't need to make them look shady coz the neg rep is enough to warn people here.. you're just wasting energy

[ACCTseller]

What a joke this site is. Every week something surfaces that makes it even more sketchy than before.

As long as they keep on paying their sig participants, all is good. 

seriously man.. you don't need to make them look shady coz the neg rep is enough to warn people here.. you're just wasting energy

As long as they keep funding the escrow address for their signature campaign their shills (and people who are willing to whore out their signature for a scam site) will be able to continue advertising for them.

I cannot imagine why anyone would think it would be no big deal that an attacker can run arbitrary JS on their customers' computers.

I think it is pretty funny that a total of .008 BTC was stolen from their hot wallet though 

[tspacepilot]

What a joke this site is. Every week something surfaces that makes it even more sketchy than before.

As long as they keep on paying their sig participants, all is good. 

seriously man.. you don't need to make them look shady coz the neg rep is enough to warn people here.. you're just wasting energy

As long as they keep funding the escrow address for their signature campaign their shills (and people who are willing to whore out their signature for a scam site) will be able to continue advertising for them.

I cannot imagine why anyone would think it would be no big deal that an attacker can run arbitrary JS on their customers' computers.

I think it is pretty funny that a total of .008 BTC was stolen from their hot wallet though 

Everyone in this thread needs to make sure you know that ACCTseller is the trolling alt of Quickseller.  He uses it to troll when he doesn't want to draw attention to his main account.  He used to try to keep it a secret, but it's been publically admitted (even by him).  Just for everyone's informatino.

Guess what guys, a hot-wallet is a hot-wallet.  It gets used for withdrawals.  Are you really going to take the word of a guy who's been in this thread trolling non-stop for days that a hot wallet was "hacked" just because he publishes a bitcoin address and shows a chart. It's not like he's an impartial observer, he's been spreading FUD for days now and for all we know he's getting paid by folks like Quickseller to do so.

Non-insanse people here are going to wait a while to see what the devs say about this.  Geez the drama on this forum has really become over-the-top.

[ACCTseller]

What a joke this site is. Every week something surfaces that makes it even more sketchy than before.

As long as they keep on paying their sig participants, all is good. 

seriously man.. you don't need to make them look shady coz the neg rep is enough to warn people here.. you're just wasting energy

As long as they keep funding the escrow address for their signature campaign their shills (and people who are willing to whore out their signature for a scam site) will be able to continue advertising for them.

I cannot imagine why anyone would think it would be no big deal that an attacker can run arbitrary JS on their customers' computers.

I think it is pretty funny that a total of .008 BTC was stolen from their hot wallet though 

Everyone in this thread needs to make sure you know that ACCTseller is the trolling alt of Quickseller.  He uses it to troll when he doesn't want to draw attention to his main account.  He used to try to keep it a secret, but it's been publically admitted (even by him).  Just for everyone's informatino.

Guess what guys, a hot-wallet is a hot-wallet.  It gets used for withdrawals.  Are you really going to take the word of a guy who's been in this thread trolling non-stop for days that a hot wallet was "hacked" just because he publishes a bitcoin address and shows a chart. It's not like he's an impartial observer, he's been spreading FUD for days now and for all we know he's getting paid by folks like Quickseller to do so.

Non-insanse people here are going to wait a while to see what the devs say about this.  Geez the drama on this forum has really become over-the-top.

There have been multiple reports from people getting random HS popups. This has even been confirmed by DaDice that someone had hacked their chat.

Can you say with a straight face that you would have no problem trusting a site with large amounts of money to gamble with when a random person is able to execute arbitrary JS on your computer via their site?

[tspacepilot]

What a joke this site is. Every week something surfaces that makes it even more sketchy than before.

As long as they keep on paying their sig participants, all is good. 

seriously man.. you don't need to make them look shady coz the neg rep is enough to warn people here.. you're just wasting energy

As long as they keep funding the escrow address for their signature campaign their shills (and people who are willing to whore out their signature for a scam site) will be able to continue advertising for them.

I cannot imagine why anyone would think it would be no big deal that an attacker can run arbitrary JS on their customers' computers.

I think it is pretty funny that a total of .008 BTC was stolen from their hot wallet though 

Everyone in this thread needs to make sure you know that ACCTseller is the trolling alt of Quickseller.  He uses it to troll when he doesn't want to draw attention to his main account.  He used to try to keep it a secret, but it's been publically admitted (even by him).  Just for everyone's informatino.

Guess what guys, a hot-wallet is a hot-wallet.  It gets used for withdrawals.  Are you really going to take the word of a guy who's been in this thread trolling non-stop for days that a hot wallet was "hacked" just because he publishes a bitcoin address and shows a chart. It's not like he's an impartial observer, he's been spreading FUD for days now and for all we know he's getting paid by folks like Quickseller to do so.

Non-insanse people here are going to wait a while to see what the devs say about this.  Geez the drama on this forum has really become over-the-top.

There have been multiple reports from people getting random HS popups. This has even been confirmed by DaDice that someone had hacked their chat.

Can you say with a straight face that you would have no problem trusting a site with large amounts of money to gamble with when a random person is able to execute arbitrary JS on your computer via their site?

I can say with a straight-face that you are trolling this thread now with an alt in order to avoid drawing even more negative attention to your main account.  I can say with a straight face that saying things like this:

I think it is pretty funny that a total of .008 BTC was stolen from their hot wallet though 

Is clearly trolling.

I can say with a straight face that I wouldn't be surprised if you hired someone to execute this attack given your penchant for vendettas, your reputation for trickery and your lust for power and hatred of those who have crossed you.

[ACCTseller]

So are you okay with trusting a large amount of money on a site where a random person was able to execute arbitrary JS on their customers' computers?

[dooglus]

I'll reply in a single post so as not to spam this thread too much more. I'll try to make this my last post as I think everything has already been said...

I think that's the right move.

I'll keep it short...

you've attracted a whole cadre of haters

To be fair, NLNico was the one who initially reported on the problem of the site's probably insolvency. I'm just one of the ones he attracted.

Now all of sudden according to dooglus his, demand for proof of solvency is about Da Dice ability to process withdrawals. Are you fucking kidding me?

Insolvency causes you to be unable to pay your debts. Whether those debts are to your investors or to your players isn't important. Someone you owe money to is getting screwed.

You are known to informally invest 53 BTC on a site with no proof of solvency (we are still talking about cold storage, aren't we?), post about it on forum! and then get 11 BTC profit from it (still lmao) and then post about it on forum! and then when inquired about it, it was a 0 BTC transaction. Anyway I will still take Rhavar's word on it.

What's your point? If I had been asked to prove that I had control of the 53 BTC, I would have done so. I wouldn't have made a series of weak excuses and ended up saying "the deal's off so now I don't need to prove anything". That would have made it look like perhaps I didn't have control of the 53 BTC after all.

But Just-dice is stilla  shitty site based on coinroller.

I don't know what coinroller is.

You added CLAM because no one would play on your site with BTC anymore

These are the amounts wagered per day for the last 7 days before I stopped accepting BTC bets:

Code:

2014-06-17    2210.31584730
2014-06-18    2273.14902642
2014-06-19    7463.21723620
2014-06-20    1653.27568022
2014-06-21    1794.46972037
2014-06-22    1490.13643029
2014-06-23    1907.71386701

That's 18792 BTC wagered in the last week. DaDice has had what, 5000 BTC wagered in total? I shut down because I was uncomfortable holding such a huge amount of investor money.

If we go by the volume then PD remains the king of arena, you are no where in counting

Before JD shut down it was the biggest by far. After we shut down, the volume went to PD. JD switched to CLAM to deliberately lower the volume, and it still gets more volume than DaDice can achieve, even with its blanket advertising.

Da Dice has every right to advertise their banners where they want.

True. They also have every right to try to claim I am jealous of their "success". And I have every right to point out how ridiculous their claim is.

But as usual dooglus will not read my enitre post, its bitter isn't it?

I read your posts. They just don't make much sense.

Just tell me this: What the fuck do you want?

Nothing. If you stop making dumb claims about me and/or JD I will stop addressing them. Deal?

<script>
alert("this post has been hacked!");
</script>

[waterpile]

How to invest in the site?

Sure feel free to invest your ponzi collections into this site, you will be satisfied in the end

[tspacepilot]

[snip]
<script>
alert("this post has been hacked!");
</script>

At least this part was funny!

[enervist]

[snip]
<script>
alert("this post has been hacked!");
</script>

At least this part was funny!

ignoring all facts posted by that dooglus guy to keep the scam in your signature alive? very sad behaviour...

[dadice_dev]

When somebody says they were able to "Hack DaDice" and/or penetrate thru Da Dice system/servers = Wrong!

I am not trying to intimidate our dear "exploiters" here but I must admit chats and broadcasts running thru socket service (which is totally independant in its operation, and anyone who has been to Da Dice once is the witness to this that whole system keep working even without those services) is perhaps the only vulnerable area of Da Dice gameplay interface, and why would we mind "almost free" security checks in first place?

I mean every decent website has a "whitehat bug bounty program", so does Da Dice! only if they reported it to support without exploiting it, they deserved a reasonable reward for it nevertheless that is not their agenda! They want to spread fear and disturbance to back up all the FUDs right here.

Unlike all other dice sites, Da Dice is unique and has far more number of features and interfaces within our main gameplay interface and we claim that we are still evolving into something even better.

Anyway, all this happened this time because our socket script didn't sanitize some data (background variables, exploited from console) which was sent along with chat messages or other online/offline commands. Of course it took exploiter a considerable amount of time to write infectious code (2 days is it?) and successfully broadcast it to users. Ofcourse bodgybrothers is our exploiter here who couriously had been asking about "hi!" alert dialog, but this time we had a serious misjudgment and thus we let this happen. Between, we have had been busy with a major update to Da Dice as well which will be announced later today.

If we only notice the time difference between last attack on chat and this one (which I agree is more serious), and all the logs/events we monitor everyday its very clear that some one has been financing our exploiters lately. There are few other people too who found bugs and were paid from our bounty program, I recommend they do the same since there is a possiblity we might pay you better then what they can afford

Interestingly the site does not use even basic protections like setting the session cookies to HttpOnly, which would have made it trivial to have harvested and saved all users session ids (as simple as: document.cookies) to save to to for withdrawing funds

Anyone still using this site, has been warned that most 12 year olds code better sites.

I am afraid but you were also right. This is a server side configuration and we had this in place until our last crash and then server rebuild during 100m event. Since Da Dice operated on dedicated servers, all these configurations are set globally from top instead of setting them on run-time. We overlooked this setting but it has now been corrected! Thank you for pointing it out, Attack Dog Jerry

[enervist]

lots of words...

tldr; dadice fucked up once more and is grasping every straw in reach.

[Da_Dice_Staff]

lots of words...

tldr; dadice fucked up once more and is grasping every straw in reach.

tldr.... that sums it up I believe. You couldn't be bothered to actually read a detailed explanation as such your statement is invalid thus nothing but spam. Well done

[Da_Dice_Staff]

CURRENT ROLL STANDINGS TO 200 MILLIONTH ROLL!!!

We have hit 191 million rolls now! 

0.05 BTC growth per day for every day sooner than the 19th!!

Who will be the lucky bounty winner?! And who will have predicted the correct date?! Keep your eyes on this page! The final countdown has begun!

[mfaspk]

To be fair, NLNico was the one who initially reported on the problem of the site's probably insolvency. I'm just one of the ones he attracted.
Insolvency causes you to be unable to pay your debts. Whether those debts are to your investors or to your players isn't important. Someone you owe money to is getting screwed.
...
These are the amounts wagered per day for the last 7 days before I stopped accepting BTC bets:

Code:

2014-06-17    2210.31584730
2014-06-18    2273.14902642
2014-06-19    7463.21723620
2014-06-20    1653.27568022
2014-06-21    1794.46972037
2014-06-22    1490.13643029
2014-06-23    1907.71386701

That's 18792 BTC wagered in the last week. DaDice has had what, 5000 BTC wagered in total? I shut down because I was uncomfortable holding such a huge amount of investor money.
...
Before JD shut down it was the biggest by far. After we shut down, the volume went to PD. JD switched to CLAM to deliberately lower the volume, and it still gets more volume than DaDice can achieve, even with its blanket advertising.
...
True. They also have every right to try to claim I am jealous of their "success". And I have every right to point out how ridiculous their claim is.
...
I read your posts. They just don't make much sense.
...
Nothing. If you stop making dumb claims about me and/or JD I will stop addressing them. Deal?

Woah... my posts don't make sense? Exactly what part didn't make sense? The one where I pointed out how shallow and stupid your thinking is? Only if you had read one of my posts before about transparent statistics (which I still claim!!!) you wouldn't have made that mistake. Well the way I see it everyday Da Dice wagered amount is increasing, Da Dice also has a little but fair number of high rollers. You added CLAM to Just-dice in december 2014! You have had been running just-dice since june 2013 right? wait at least this much period before you start comparing statistics. Da Dice never claimed its already # 1 dice site, it will get there sooner or later we all know that.

And even in your threads the ones who started them or constantly bump your threads are the ones criticizing dadice here, "coincidence? I think not!!!"... Anyway since you're here to discuss problems of Da Dice, how about we discuss the one where you ripped off your investors with 1300 BTC with a bullshit story that you had already paid the guy and shit went down and whatever! It was the investor's profit! Now I call you a rip off as well! Just go a google search there are a number of users even "Hero Members" from BCT calling you a scammer and shit.

You have made your point and concerns very clear, you even gave them all a negative trust rating, (don't take it back!) but if your consciences is still not at ease, I don't know what the fuck will! Ever heard of a word "conflict of interest?", you as admin of a dice site and (possibly?) investor in other gambling programs should know better. It doesn't look good at all doog! I am still in shock that how come Dean proved himself smarter then you, when he decided to leave this conversation after constantly repeating his concerns.

If you have an agenda to bash Da Dice on purpose, then contact this piece of shit friend of yours:

So are you okay with trusting a large amount of money on a site where a random person was able to execute arbitrary JS on their customers' computers?

...whose nick name is "account seller" but profile message says "No longer selling accounts", probably fulfills all the needs of Troll & Co. regarding shill accounts to slander dadice.

[mfaspk]

ignoring all facts posted by that dooglus guy to keep the scam in your signature alive? very sad behaviour...

The fact about the facts posted by dooglus is that none of them are facts, just assumptions, "Oh! I am terribly poor at predicting future!", "Oh no! I didn't call you a ponzi scam!", "Oh I didn't mean that what I meant was what I didn't mean to say remains the meaning what I should have said!"