The memory leakage issue, known technically as a buffer overrun, began in September when Cloud Flare swapped a new bit of code (an HTML parser) into its system.
"Immediately upon learning this information, we took several steps to review the situation and bring in the right external partners to support our investigation.
But I needed to be very discreet, because my family life makes me happy and I didn’t want to change anything to it.
I’ve met many charming men who have been very nice to me.
Two-factor authentication requires a code sent to your mobile phone, in addition to your password.
Here's a comprehensive list of websites that have two-factor, with links to how to turn it on for every site.
The sex and dating site Adult Friend Finder has been hacked for the second time (that we know of), according to the breach notification website Leaked Source, and the world's truly lousy password habits have again been exposed in the process.
Cloud Flare responded promptly to Ormandy's notification early Saturday morning.
Within hours, the security team disabled several new features to its service—for those inclined: email obfuscation, server-side excludes, and automatic HTTPS rewrites—that had caused the problem to surface.
"We're talking full https requests, client IP addresses, full responses, cookies, passwords, keys, data, everything."In a tweet posted Thursday, Ormandy pointed to sites including Uber, 1Password, Fit Bit, and OKCupid, as having spilled data.
Indeed, even sites seemingly protected by HTTPS, a security measure designed to keep hackers and spies from snooping on Internet traffic, were affected.