Found this on Pokertableratings this morning. I know some people from here play there:
Synopsis
In summary, there is a critical network vulnerability in the Cake poker network’s software which makes it possible to steal account information including username and passwords, and view hole cards. There is no 100% protection until the Cake poker network upgrades to OpenSSL. Cake has an erroneous security notice on their website which claims to implement a type of encryption that they do not have.
As before, we have no way of knowing if this vulnerability has been used to exploit actual players. PokerTableRatings.com created test accounts for all of our testing during our research phase. We do not have passwords to any unauthorized user accounts. Cake has been notified of the issue and we will continue to report as the situation develops.
Full article
Synopsis
In summary, there is a critical network vulnerability in the Cake poker network’s software which makes it possible to steal account information including username and passwords, and view hole cards. There is no 100% protection until the Cake poker network upgrades to OpenSSL. Cake has an erroneous security notice on their website which claims to implement a type of encryption that they do not have.
As before, we have no way of knowing if this vulnerability has been used to exploit actual players. PokerTableRatings.com created test accounts for all of our testing during our research phase. We do not have passwords to any unauthorized user accounts. Cake has been notified of the issue and we will continue to report as the situation develops.
Full article
Comment