Primedice.com | Since 2013 | Longest Running Crypto Casino | 113 BTC Jackpot!

[athena2007]

Ty for update.micro please confirm and if you cud tip me too...

Ty

We're working on getting the site back live. In the end we got lucky the attacker chose to put up a basic phishing site instead of launching a more sophisticated attack.

Players only lost 0.05 BTC as a result of this. If you made a deposit to the phishing site you must sign the address you sent from to claim a refund from us.


Here's what the attacker was able to do through his phishing site:
-Send Usernames/Passwords for users who logged in during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.

What attacker wasn't able to do
-Grab user tokens/sessions (local storage isn't shared between http & https versions)
-Access our DB, accounts, balances


We're taking our time to complete investigation and put things back up in a secure way. Currently we are unable to transfer the domain out of our registrar due to issues with them but given the way the account was targeted it shouldn't be possible for the hacker to regain access anymore (more on this later).

We're working on getting the site back live. In the end we got lucky the attacker chose to put up a basic phishing site instead of launching a more sophisticated attack.

Players only lost 0.05 BTC as a result of this. If you made a deposit to the phishing site you must sign the address you sent from to claim a refund from us.


Here's what the attacker was able to do through his phishing site:
-Send Usernames/Passwords for users who logged in during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.

What attacker wasn't able to do
-Grab user tokens/sessions (local storage isn't shared between http & https versions)
-Access our DB, accounts, balances


We're taking our time to complete investigation and put things back up in a secure way. Currently we are unable to transfer the domain out of our registrar due to issues with them but given the way the account was targeted it shouldn't be possible for the hacker to regain access anymore (more on this later).

Gosh does the begging ever stop.. leave admin to fix more important issues at hand,,, get a grip.

[bestdoggy11]

No one is begging, since micro did mention he would be doing such for playrrs which he did and hats off to him, just asking that. There is no begging here and kindly folks leave your 2 cents to yourself. If micro does nor want to tip me since its just fair he tipped those effected then he will just say it himself, hey i cannot tip you.

Get onto a different topic.

Ty for update.micro please confirm and if you cud tip me too...

Ty

We're working on getting the site back live. In the end we got lucky the attacker chose to put up a basic phishing site instead of launching a more sophisticated attack.

Players only lost 0.05 BTC as a result of this. If you made a deposit to the phishing site you must sign the address you sent from to claim a refund from us.


Here's what the attacker was able to do through his phishing site:
-Send Usernames/Passwords for users who logged in during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.

What attacker wasn't able to do
-Grab user tokens/sessions (local storage isn't shared between http & https versions)
-Access our DB, accounts, balances


We're taking our time to complete investigation and put things back up in a secure way. Currently we are unable to transfer the domain out of our registrar due to issues with them but given the way the account was targeted it shouldn't be possible for the hacker to regain access anymore (more on this later).

We're working on getting the site back live. In the end we got lucky the attacker chose to put up a basic phishing site instead of launching a more sophisticated attack.

Players only lost 0.05 BTC as a result of this. If you made a deposit to the phishing site you must sign the address you sent from to claim a refund from us.


Here's what the attacker was able to do through his phishing site:
-Send Usernames/Passwords for users who logged in during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.

What attacker wasn't able to do
-Grab user tokens/sessions (local storage isn't shared between http & https versions)
-Access our DB, accounts, balances


We're taking our time to complete investigation and put things back up in a secure way. Currently we are unable to transfer the domain out of our registrar due to issues with them but given the way the account was targeted it shouldn't be possible for the hacker to regain access anymore (more on this later).

Gosh does the begging ever stop.. leave admin to fix more important issues at hand,,, get a grip.

[Stunna]

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  

[Octoberian17]

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  
http://image.ibb.co/hUGwOS/Poster.png

Thank you Stunna.. Welcome PD

[BreachOfEuphoria]

Good job on getting the site back  

I wanted to log in to change my password.
I'm getting a "Please contact support to recover your account"

Edit:I got the message when trying to recover my password, I wrote you an e-mail.

Can i recover my account by contacting you using this forum?

[adaseb]

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  

Are you guys going to take any legal action against the hacker?

Even though not much was stolen, there was downtime which lead to profit loss.

Pretty sure the profit loss was much greater than 1 BTC.

[MICRO]

Please be patient with support at this moment.

We are getting huge amount of tickets and for the first time answer time can be very slow.

[Juggy777]

We're back. We're waiting to move the domain off the registrar but we've put the site back. We do not believe the attackers can recover the domain back again but we will be keeping a careful eye on things.

If you have a password set as a pre-caution we'll be requiring you to quickly swap it out when reloading https://primedice.com . You will be able to login again once you've changed your password.


Welcome back guys! thanks for your incredible patience. Losing access to the domain felt like losing our first child, it was a rough last few days but we'll be getting things steady again and will be briefing you with the full story soon. If you experience any issues please contact live support.


Verifying our SSL certificate: 8E:CA:D4:5A:48:0A:5C:F0:30:0B:40:29:E2:FB:2A:5C:D3:81:88:C6   SHA1


Back to working on PD5  

I can understand what you'll must have gon through it's a shame that people do such kind of stuff, I'm sure PD bounce back stronger and faster.

It goes without saying people need to calm their horses before sending support tickets to them, they already have their hands full no point in rushing.

The good thing is PD database was not effected and I'm sure each matter will be resolved, good luck and wish the staff of PD strength to get over this mess.

[Betwrong]

"Password successfully changed" 

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise.

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

[lay666]

"Password successfully changed" 

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise.

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

I have 2fa and password, but  I cant log in
I contacted support, informed my email IP etc, dont know how much time need to check
))

[MICRO]

"Password successfully changed"  

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise.

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

Hey,

Yeah we didn't have to do that and create a LOT of exstra work for us and for support but we want to make sure all our users are safe so that is done to protect you guys.

Atm we are changing it a bit so users with 2fa will be able to login normally. But we STRONGLY recommend you to change your password right after you login with 2fa and old password.

Also withdrawals are set to manual atm so if you have logged into phising site and got your password compromised and attacker somehow manages to login your balance will be safe and we will cancel the withdrawal he made after you contact support.

Please remember that we have millions of accounts on primedice and at this moment all support staff is in the office and working but we are getting huge amounts of new tickets so support will be a lot slower than normal.

I know you all got used to our super fast support with less than 60 seconds first reply time .
But at this moment we cant keep up to that standard.

Please be patient.

edit: One more thing if you did not have any balance on your account feel free to register NEW account and use that in the meantime.

[Kargai]

"Password successfully changed"  

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise.

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

Hey,

Yeah we didn't have to do that and create a LOT of exstra work for us and for support but we want to make sure all our users are safe so that is done to protect you guys.

Atm we are changing it a bit so users with 2fa will be able to login normally. But we STRONGLY recommend you to change your password right after you login with 2fa and old password.

Also withdrawals are set to manual atm so if you have logged into phising site and got your password compromised and attacker somehow manages to login your balance will be safe and we will cancel the withdrawal he made after you contact support.

Please remember that we have millions of accounts on primedice and at this moment all support staff is in the office and working but we are getting huge amounts of new tickets so support will be a lot slower than normal.

I know you all got used to our super fast support with less than 60 seconds first reply time .
But at this moment we cant keep up to that standard.

Please be patient.

edit: One more thing if you did not have any balance on your account feel free to register NEW account and use that in the meantime.

Thanks for all the hard work and the security.

Good luck to all the Support team for managing everything

[JanpriX]

"Password successfully changed"  

You've definitely done the right compelling lazy people like me to reset their passwords before they can make any bets. I wouldn't do that almost for sure otherwise.

Great to see our favorite dice site is back. Good job, PD team! Good luck to all the rollers!

Hey,

Yeah we didn't have to do that and create a LOT of exstra work for us and for support but we want to make sure all our users are safe so that is done to protect you guys.

Atm we are changing it a bit so users with 2fa will be able to login normally. But we STRONGLY recommend you to change your password right after you login with 2fa and old password.

Also withdrawals are set to manual atm so if you have logged into phising site and got your password compromised and attacker somehow manages to login your balance will be safe and we will cancel the withdrawal he made after you contact support.

Please remember that we have millions of accounts on primedice and at this moment all support staff is in the office and working but we are getting huge amounts of new tickets so support will be a lot slower than normal.

I know you all got used to our super fast support with less than 60 seconds first reply time .
But at this moment we cant keep up to that standard.

Please be patient.

edit: One more thing if you did not have any balance on your account feel free to register NEW account and use that in the meantime.

We definitely understand it Micro.   We all know that many users are still registering to Primedice and most of them open new tickets every now and then. This is much expected because many people just got introduced to BTC and many of them got hooked to dice sites like PD. I've been changing my passwords every 3 months lately due to increased cases of hacked/phished accounts. Especially on those accounts that contain significant amount of BTC.

[BreachOfEuphoria]

Primedice support, Katarina and Vladimir has been very good at helping me recover my account today.
Katarina replied within 15 minutes.

I'm in again.

Thank you so much for your help

[MICRO]

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey!


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

[xMossx]

Great news! Guess I'll go change my password.

[adaseb]

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey!


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

I think what is really scary about this incident is imagine what could of happebed if the hackers weren't lazy.

They would at an unsuspecting time ( when PD dev are sleeping ) commit the hack and make the phishing site look for authentic.

When someone tried to login, they would go to the real PD and perform a withdraw.

The way the registrar handled this situation was very dangerous. Hopefully many Bitcoin sites and services can learn from this incident.

[Xylber]

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey!


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

I think what is really scary about this incident is imagine what could of happebed if the hackers weren't lazy.

They would at an unsuspecting time ( when PD dev are sleeping ) commit the hack and make the phishing site look for authentic.

When someone tried to login, they would go to the real PD and perform a withdraw.

The way the registrar handled this situation was very dangerous. Hopefully many Bitcoin sites and services can learn from this incident.

In this case, Primedice can't be reached via IP: if they change the DNS, they can't find the authentic website.
Of course, your idea is valid and can be used in some websites.

[shield132]

Congrats guys, to be fair one of the biggest dice website was stopped because of that reason. Hope this won't happen anymore.
Wish you all the best, it won't affect you a,much but wonder who was against you, who did this shit job.
Do you plan to make serious legal actions against him?

[adaseb]

Hey guys,

As many of you are probably already aware we are back up and running! Yeeey!


On your login you will be asked to reset your password, you can do that in one of two ways.

1. You can change password from any device that is still logged into your account.
2. You can contact our support team. ( Please note that support will be slower than usual due to huge amount of tickets we are getting at this moment.

Also for users safety all withdrawals are currently on manual.

I think what is really scary about this incident is imagine what could of happebed if the hackers weren't lazy.

They would at an unsuspecting time ( when PD dev are sleeping ) commit the hack and make the phishing site look for authentic.

When someone tried to login, they would go to the real PD and perform a withdraw.

The way the registrar handled this situation was very dangerous. Hopefully many Bitcoin sites and services can learn from this incident.

In this case, Primedice can't be reached via IP: if they change the DNS, they can't find the authentic website.
Of course, your idea is valid and can be used in some websites.

Yes but this is not what happened is it?

Basically the registrar redirected the traffic to a different IP.

The old site was still accessible by the old IP.

The hacker would simply record the usernames and passwords and then go to the real Primedice website by the IP address.

Plus, it takes a few hours for DNS to update. It's not instant but bottle necked by the ISP