A security breech dubbed "CloudBleed" because of its link to cybersecurity company Cloudflare compromised some 3,400 websites, including popular services like Uber, FitBit, and OKCupid. News of the bug broke Thursday and Friday after it was discovered by a Google researcher named Tavis Ormandy, and users are encouraged to change their passwords on affected sites even though the problem has now been fixed.
Ormandy's report indicated he was able to find "private messages from major dating sites, full messages from a well-known chat service, online password manager data, frames from adult video sites, hotel bookings," though Cloudflare says it has "not discovered any evidence of malicious exploits of the bug or other reports of its existence."
The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
-
Political cartoons for November 23Cartoons Sunday’s political cartoons include a Thanksgiving horn of plenty, the naughty list, and more
-
How will climate change affect the UK?The Explainer Met Office projections show the UK getting substantially warmer and wetter – with more extreme weather events
-
Crossword: November 23, 2025The daily crossword from The Week
-
US mints final penny after 232-year runSpeed Read Production of the one-cent coin has ended
-
Warner Bros. explores sale amid Paramount bidsSpeed Read The media giant, home to HBO and DC Studios, has received interest from multiple buying parties
-
Gold tops $4K per ounce, signaling financial uneaseSpeed Read Investors are worried about President Donald Trump’s trade war
-
Electronic Arts to go private in record $55B dealspeed read The video game giant is behind ‘The Sims’ and ‘Madden NFL’
-
New York court tosses Trump's $500M fraud fineSpeed Read A divided appeals court threw out a hefty penalty against President Trump for fraudulently inflating his wealth
-
Trump said to seek government stake in IntelSpeed Read The president and Intel CEO Lip-Bu Tan reportedly discussed the proposal at a recent meeting
-
US to take 15% cut of AI chip sales to ChinaSpeed Read Nvidia and AMD will pay the Trump administration 15% of their revenue from selling artificial intelligence chips to China
-
NFL gets ESPN stake in deal with DisneySpeed Read The deal gives the NFL a 10% stake in Disney's ESPN sports empire and gives ESPN ownership of NFL Network
