Hi everyone,
If you have no already seen this warning, please read on. If you're part of the skUnity Discord or on a Discord server that has already posted a message like this or are already aware, then you don't need to read this.
A major vulnerability in the Cloudflare proxying provider, used by all sites using Cloudflare, left all traffic vulnerable to hacking and leakage, going back for multiple months. Discord, skUnity Docs (skunity.com) and skUnity Forums utilise Cloudflare's services. At skUnity, we're currently unsure of any leakage caused by this and are currently awaiting confirmation from Cloudflare. Please note that skUnity has not been comprised in anyway. This is a Cloudflare problem, something we were never aware of. I've been emailed to inform me that my sites haven't been found in any leakage as of yet. The most worrying piece of information that could of been stolen is your password from any site using Cloudflare. If you have recently purchased something through PayPal or upgraded your skUnity account, you should be fine. Details are handled externally by PayPal who haven't reported anything with Cloudflare. We will be monitoring logs on skUnity to ensure that any user information changes and all logins are done by the real user.
Sites included (the list is just too long to list it here):
https://github.com/pirate/sites-using-cloudflare
It is recommended that you change your passwords for those sites immediately.
It is possible that 2FA Tokens were also leaked. 2FA may not protect accounts as the attacker can just use the 2FA token to bypass 2FA security measures.
Sources:
https://bugs.chromium.org/p/project-zero/issues/detail?id=1139
https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
https://www.reddit.com/r/sysadmin/comments/5vu3yn/cloudbleed_seceurity_bug_cloudflare_reverse/
Thanks,
BaeFell
CURRENT SKUNITY LEAKAGE STATUS:
Confirmed - no leakage currently found.
An email has been sent to @Wrong from CloudFlare confirming no information was found.
If you have no already seen this warning, please read on. If you're part of the skUnity Discord or on a Discord server that has already posted a message like this or are already aware, then you don't need to read this.
A major vulnerability in the Cloudflare proxying provider, used by all sites using Cloudflare, left all traffic vulnerable to hacking and leakage, going back for multiple months. Discord, skUnity Docs (skunity.com) and skUnity Forums utilise Cloudflare's services. At skUnity, we're currently unsure of any leakage caused by this and are currently awaiting confirmation from Cloudflare. Please note that skUnity has not been comprised in anyway. This is a Cloudflare problem, something we were never aware of. I've been emailed to inform me that my sites haven't been found in any leakage as of yet. The most worrying piece of information that could of been stolen is your password from any site using Cloudflare. If you have recently purchased something through PayPal or upgraded your skUnity account, you should be fine. Details are handled externally by PayPal who haven't reported anything with Cloudflare. We will be monitoring logs on skUnity to ensure that any user information changes and all logins are done by the real user.
Sites included (the list is just too long to list it here):
https://github.com/pirate/sites-using-cloudflare
It is recommended that you change your passwords for those sites immediately.
It is possible that 2FA Tokens were also leaked. 2FA may not protect accounts as the attacker can just use the 2FA token to bypass 2FA security measures.
Sources:
https://bugs.chromium.org/p/project-zero/issues/detail?id=1139
https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
https://www.reddit.com/r/sysadmin/comments/5vu3yn/cloudbleed_seceurity_bug_cloudflare_reverse/
Thanks,
BaeFell
CURRENT SKUNITY LEAKAGE STATUS:
Confirmed - no leakage currently found.
An email has been sent to @Wrong from CloudFlare confirming no information was found.
Last edited:
