Cloudflare have been leaking customer HTTPS sessions for months. Uber, 1Password, FitBit, OKCupid, etc. https://bugs.chromium.org/p/project-zero/issues/detail?id=1139 …
-
-
Replying to @taviso
Is it possible that server private HTTPS keys were leaked in the uninitialized data? Will
@cloudflare do a SSL key flush / replace?1 reply 0 retweets 1 like
Replying to @dascandy42
We don't think so, just the contents of HTTPS sessions.
5:45 AM - 24 Feb 2017
0 replies
0 retweets
2 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.