COLUMBUS, Ind. — Users of sites like Uber, FitBit and OK Cupid are being warned about a substantial leak of personal information. Google researchers discovered the hack that has exposed private messages, passwords, and sensitive user data.
The leak originated from CloudFlare, a web service that hosts and serves content for more than two million popular websites. The company has been known to host content from different sites on the same server. In this configuration, information on a vulnerable site can expose information on an unrelated site on the same server.
For a complete list of CloudFlare sites go to github.com/pirate/sites-using-cloudflare.
