Does scirra.com affected by Cloudbleed?

Post reply
0 favourites
  • 10 posts

  • Recently news appeared that Cloudflare had a bug that let user data be compromised between 2016.09.22. and 2017.02.18. Since Scirra recently started using Cloudflare, the scirra.com domain is in the list of the possibly affected sites. I might be paranoid, but I think users should change their passwords. Also, it's worth to take a look at the full list (for ex. HumbleBundle and Discord were affected too).

    The full list of possibly affected domains can be found here:

    https://github.com/pirate/sites-using-cloudflare

    If you are also thinking of using a password safe, I'd recommend KeePass:

    http://keepass.info/

  • Just a theory but as I know the Scirra website, once you log in to another device, you get logged out from another device.

    If my theory is correct, we might be getting logged out frequently because our accounts are being infiltrated.

    Or Scirra is having website issues with cookies.

  • Just a theory but as I know the Scirra website, once you log in to another device, you get logged out from another device.

    If my theory is correct, we might be getting logged out frequently because our accounts are being infiltrated.

    Or Scirra is having website issues with cookies.

    It's due to some caching errors according to Tom . I don't think that all of our accounts are being infiltrated that often. Nevertheless, it's an annoying bug. When I want to read a new blog post, I know that I'll have to log in again.

  • I asked Tom about this in the office and he said it didn't affect us, but guess he should confirm... Tom

  • Recently news appeared that Cloudflare had a bug that let user data be compromised between 2016.09.22. and 2017.02.18. Since Scirra recently started using Cloudflare, the scirra.com domain is in the list of the possibly affected sites. I might be paranoid, but I think users should change their passwords. Also, it's worth to take a look at the full list (for ex. HumbleBundle and Discord were affected too).

    The full list of possibly affected domains can be found here:

    https://github.com/pirate/sites-using-cloudflare

    If you are also thinking of using a password safe, I'd recommend KeePass:

    http://keepass.info/

    Thanks- I just changed my password.

    I guess we will know if Credit Card numbers start being used and our arcade games start showing up in other places.

    I hate the cloud and it is a gold mine for hackers and no matter how secure they say it is it gets hacked all the time.

  • Try Construct 3

    Develop games in your browser. Powerful, performant & highly capable.

    Try Now Construct 3 users don't see these ads

  • I asked Tom about this in the office and he said it didn't affect us, but guess he should confirm... Tom

    Thank you for clearing this.

  • BTW, I don't see Scirra in that list of possibly affected domains.

  • BTW, I don't see Scirra in that list of possibly affected domains.

    I downloaded the full list (a .txt file around 70MB) and did a search for it. Notepad++ found it in the list.

  • Just a little feedback: I'm not getting logged out all the time since I changed my password.

    Edit: Nope, just happened right after I posted this.

  • Just a little feedback: I'm not getting logged out all the time since I changed my password.

    Edit: Nope, just happened right after I posted this.

    Website has been down off and on all day today!

Post reply
  • 10 posts
Return to board index
Jump to:
Active Users
There are 1 visitors browsing this topic (0 users and 1 guests)