Over the course of the last six months, Cloudflare leaked a lot of sensitive data. The reason? A bug in its HTML-Parser that in the end impacted millions of websites. Beside other things, they offer DDoS protection and a CDN service. Due to the massive amount of affected websites it’s a rather important issue and it’s being referred to as ‘Cloudbleed’ – in reference to the 2012-2014 Heartbleed security bug.
What was this vulnerability on Cloudflare servers all about?
If you want a longer and more in-depth article on the whole issue then head over to CloudFlare and take a look at their write-up. Or we recommend to watch the easily understandable video below from Newsy:
Why should you care about the Cloudflare data breach?
Cloudflare is a popular service used by thousands of websites. You probably know 4chan.org, uber.com, yelp.com, zendesk.com, medium.com, pastebin.com, glassdoor.com, bitcoin.de, fitbit.com, porntube.com, or 1password.com? There are more – lots more of affected sites. It is very likely that you have an account with at least one of them. Just take a look at this list containing around 3,400 websites which might have been affected by the Cloudflare leak. Spoiler warning: If you’re looking for Avira you won’t find it there.
All in all there is no reason for you to panic though. You might not even be at risk, heck, it’s unclear if any data was stolen/the issue exploited at all before the bug was finally found. Then again remember the massive amount of big names you just saw in the above list. If you want to be really sure that your password is safe, you might want to consider – as a precautionary measure – to change your login credentials. Especially if you’re using the same password for more than one account. And please, don’t use one of these.
Protect your data with strong passwords
If you are like me and have a hard time remembering or creating strong passwords you might start using the same two or three variations for all your online accounts. And because bad stuff only happens to other people that shouldn’t be a problem, right? Wrong. With a bug like Cloudbleed everyone with an account on one of the affected websites can potentially become a victim. Sure, it’s reasonable to think that nothing at all will happen, but what if? There is a very easy way to make sure you stay secure from falling into that trap: use a password manager. Our Avira Password Manager solves the hassle of remembering passwords and creates secure, unique passwords for each account.