Dear Justin.tv Broadcasters and Viewers,
First, we want to apologize for the security holes that have been exploited during the past 5 days. Justin.tv is forever committed to maintaining the security and privacy of all of its users. We understand that problems do occur that they are very serious and deserve our undivided attention. Furthermore, we need to improve our methods of reaching out to the community about problems and fixes much sooner. "We are working on it" is not good enough. We are committed acting faster and communicating better.
On the technical side, as a result of the security vulnerabilities that have been uncovered - we currently doing a full security review of the site.
With that said, we want to take a second to discuss what has occurred over the past 5 days. On Saturday we started to receive emails from users saying that their account had been compromised. On Saturday night we found a vulnerability that allowed someone to gain access to another users account without needing their username and password. Emmett worked tirelessly to fix the bug and released a patch on sunday morning. We were informed that as a result of the first vulnerability, personal communications from a number of justin.tv users were posted on flickr for all to see. We greatly regret that this occurred and apologize that we were not able to find and fix this vulnerability sooner. On tuesday and similar vulnerability was found and it was fixed within 2 hours. Tonight Tia and Emmett are hosting a townhall meeting a 6pm pacific at www.justin.tv/help. They will be broadcasting and answering you questions about security issues on the site.
Please join us.
8 comments:
Well, I was on the verge of stating "too little too late". But this response is exactly what I was waiting for. Thank you for acknowledging the problem and addressing our concerns. I had spoken with other casters previously, and my biggest concern was what you had stated in this blog. In fact, I stopped broadcasting because of this security issue.
I will start to cast again, and I hope that my privacy isn't compromised.
Thanks JTV.
Hmm. How do I know if my account was compromised? Everything looks okay on my end. I guess I should be proactive and change my password anyway?
Thanks Michael.
Just what we needed :) thanks jtv!
Hey I'm Tia... WTF? There's another Tia out there and I wasn't notified!?!
Thanks for the updates guys!
P.S. Hey, Other Tia: What's up, were you named for Escape from Witch Mountain, too?
TiaVamp
http://www.TheDefaced.org/ did it.
thanks again for your work to make this a good strong site.
One thing that may have slipped is the following:
While on a PRIVATE CHANNEL, archives can no longer be viewed. You can get to the Channel with the ACCESS CODE but you can't view archives...The video stays ifinitely on LOADING!!!! Once the channel is made NOT PRIVATE, you can then view archives again.
If you can fix that, it would be great. An email was sent to Justin Help
Thanks Gals/Guys
thank you
chat sohbet muhabbet mirc
Post a Comment