|25/02/17||СloudFlare parser bug||0|
СloudFlare parser bug
25.02.17 08:36 from adminDear participants of the BTC-e project!
On February 23, 2017 Cloudflare officially reported a security problem that caused leakage of sensitive data into html. Cloudflare claims that the risk of data leakage is 1 in 3 300 000 requests (or only 0.00003%).
To prevent unauthorized use of leaked data, we worked out a series of measures and recommendations for our customers:
1) You should change your account password before 20:00 (GMT +3) on 26.02.2017. If you fail to do so, your password will be reset automatically.
If you enabled 2-factor authentication between the 12th and the 20th February 2017, we strongly recommend you disable and re-enable it again.
2) You should re-create your API keys (info, trade, btc-e code withdraw & coupon) before 20:00 (GMT +3) on 26.02.2017.
If you fail to do so, all your keys will be blocked automatically.
3) Cloudflare explicitly mentions that SSL certificates were not leaked. However, we will change SSL certificates for btc-e.com and btc-e.nz within the next several days to provide additional security.
For more information about the issue, see Cloudflare’s official blog posting at https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
Sign in to write.