Wednesday, March 1, 2017

CloudBleed Vulnerability

A recent vulnerability was discovered in popular DDOS protection service Cloudflare. Third party sites like Zendesk which handles customer service responses for hundreds of thousands of websites was one of the many sites possibly affected by the vulneribility and Epik domains was kind enough to send out a friendly notice to their members as part of their proactive approach to any type of hacking attempts.

More information surrounding this is below as well as preventive measures:









The Cloudflare vulnerability, so-called CloudBleed opened the possibility that sensitive data, such as account names and passwords, may have leaked from some sites. The exact extent of any leak, if it occurred, is still unclear.

Besides keeping good passwords, there are several additional measures you can take for securing your account:

1. Enable WHOIS privacy for your domains
2. Enable 2-Factor or 2 step SMS authentication
3. Enable IP address restriction
4. If you are an Epik or Domainer you should always enable free Max-Lock which will block all transfers out requests so you dont lose a valuable domain.
 
Official website