-How many attacks did you face since the begining of SN ?
-What kind of attacks did you face ?
-What was their impacts ?
-What was the worst ?
or may be there is a place where i can find those data ?
pull down to refresh
0 sats \ 8 replies \ @k00b 6 Jan
Attacks? What do you mean?
reply
0 sats \ 0 replies \ @Roll OP 6 Jan
cyber in case of :
-misconfiguration,
-bug,
-Api vulnerabitlities if you are using it,
-Phishing , social engineering,
-server, service vulnerabilities....
reply
0 sats \ 5 replies \ @k00b 6 Jan
We had a DoS attack and a DDoS attack. Both made the site unusable for until we figured out mitigations.
reply
0 sats \ 4 replies \ @Roll OP 6 Jan
Do any datas have been robbed: user accounts, email ...?
do you have a report regarding the attacks you have ?
or will you ?
reply
0 sats \ 3 replies \ @k00b 6 Jan
Whenever there are problems like this we've posted about it. We haven't been robbed. We don't store email addresses in plaintext associated with accounts (we hash them). We haven't had accounts robbed to our knowledge.
The biggest problem like this that we've had is a rewards bug that overpaid people: #217122
The DoS stuff was posted about too but I don't have the time to find it.
reply
0 sats \ 2 replies \ @Roll OP 6 Jan
thks for your feedback :)
reply
21 sats \ 1 reply \ @k00b 6 Jan
In general we try to be very cautious about what we store:
- we don't store spending credentials for attached wallets in plaintext on the server
- we hash user email addresses
- we allow hard/deep deletion of withdrawal invoices after 7 days
reply
0 sats \ 0 replies \ @Roll OP 6 Jan
as you were a plateform with custodian sats and email data....
for some people you could be an good oportunity to...
reply
0 sats \ 0 replies \ @NovaRift 6 Jan
He may be inquiring about DDoS attacks and other related cyber threats.
reply