Last night, one of the world’s largest security and content delivery networks disclosed a security breach that had the potential to impact over 5 million websites around the world. Following this announcement, the QuadrigaCX security team undertook a thorough review of the situation to determine whether or not QuadrigaCX clients were impacted. Upon completion of this review, we have determined that QuadrigaCX clients are 100% safe from this security breach.
Unlike many websites, QuadrigaCX employs a unique password encryption system that encrypts passwords in the browser using a unique hash, prior to secure transmission via HTTPS to our servers.". As such, in the highly unlikely case that password data was leaked during transmission, it would be completely unusable to nefarious individuals.
In addition to this, we have been assured by Cloudflare that our domain was not impacted by the breach:
“Fortunately, your domain is not one of the domains where we have discovered exposed data in any third party caches. The bug has been patched so it is no longer leaking data. However, we continue to work with these caches to review their records and help them purge any exposed data we find. If we discover any data leaked about your domains during this search, we will reach out to you directly and provide you full details of what we have found.”
Despite this, we encourage QuadrigaCX users to consider the following best practices when it comes to securing your account:
- Change your password occasionally, and select a unique password that it not used with any other service.
- Enable both Google Authenticator 2FA and Email 2FA for maximum protection
As part of our ongoing commitment to security, QuadrigaCX will be introducing additional security features in the coming weeks to further bolster our position as a security leader in the cryptocurrency industry.
If you have any questions regarding account security or the Cloudbleed vulnerability, please contact us at firstname.lastname@example.org.