Impact of Cloudflare Bug on ASHA
Last Updated: February 27, 2017
On February 23rd, one of ASHA’s service providers, Cloudflare, reported
a bug that resulted in the leak of data through their services. The
leak was very small but did result in some sensitive information such as
cookies and security tokens showing up in Internet search engines. The
bug was fixed quickly and Cloudflare worked with search engines (e.g., Google,
Yahoo, Bing) to erase leaked data before the bug was publicized.
Cloudflare is a security and performance service used by 5.5
million websites. Based on the information we have received from
Cloudflare, the bug did not directly affect ASHA’s website customers. We will
contact any of our customers if we discover or receive evidence that the bug
affected them. As a precautionary measure, we ask all concerned customers to change
their account passwords. As
a reminder, it’s always a good idea to regularly change your website passwords
and use unique passwords for all of the websites you visit.