Cloudbleed vulnerability

Cloudbleed vulnerability. What is it?

CloudFlare, a popular web company which hosts and serves content for many websites, had a vulnerability in their code which was leaking memory, possibly exposing passwords, private messages and other sensitive data from a vast number of sites.

Who was vulnerable?

Visitors of websites using Cloudflare from September 22nd, 2016 to February 18th, 2017.

Was Hushmail affected?

No, Hushmail was not affected. We have not been CloudFlare customers since 2015.

Resources:

https://www.forbes.com/sites/thomasbrewster/2017/02/24/google-just-discovered-a-massive-web-leak-and-you-might-want-to-change-all-your-passwords/#41c86b153ca3

https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/