Not sure if anyone has spotted this on the Betfair forum
http://community.betfair.com/general_be ... comeHeader#flvWelcomeHeader
Not sure what the other ones are/were?
Serious security breaches discovered in another Betfair Cert
Moderator: 2020vision
7 posts
• Page 1 of 1
Serious security breaches discovered in another Betfair Cert
by osknows » Thu Aug 15, 2013 7:08 pm
-
osknows - Posts: 946
- Joined: Wed Jul 29, 2009 12:01 am
by kiint » Thu Aug 15, 2013 9:03 pm
He'd posted on his forum about this quite a while ago and although I can't remember the details, I think at the time that I didn't think that it was too big a deal and nothing for me to worry about.
I must admit to being a bit cynical about his announcement and can't help thinking that maybe sales aren't so good and he's trying to up his market penetration with a short loss leader.
I must admit to being a bit cynical about his announcement and can't help thinking that maybe sales aren't so good and he's trying to up his market penetration with a short loss leader.
- kiint
- Posts: 148
- Joined: Tue Feb 23, 2010 12:12 am
by osknows » Thu Aug 15, 2013 9:12 pm
I'm more interested to know if this is a genuine Betfair issue or if a vendor has screwed up and is hitting out?
-
osknows - Posts: 946
- Joined: Wed Jul 29, 2009 12:01 am
by GaryRussell » Fri Aug 16, 2013 7:29 am
The security breach as I understand it was the user id and password were transmitted unencrypted by an API product (not ours!). Betting Assistant transmits the login details encrypted. It is no more and no less secure than using Betfair's website.
-
GaryRussell - Site Admin
- Posts: 9872
- Joined: Fri Nov 18, 2005 8:09 pm
- Location: Birmingham, UK
by Captain Sensible » Fri Aug 16, 2013 12:35 pm
Not that tech minded with HTTPS but I thought all requests to the API were via HTTPS so surely it must have taken a bit of doing to make their requests unencrypted and not secure?
Does anyone know what the software was, guess it's not one of the bigger apps otherwise the geek would have been more than happy to say who it was.
Betfair have now removed the post and stated there's no issues so I can only assume it was another geek marketing push unless he posts more details of these so called 'security issues' Might be worth you reiterating your post into the BA splash screen, Gary, just to assure users there are no issues with BA as you know how these things can spread once rumours get put out there.
Does anyone know what the software was, guess it's not one of the bigger apps otherwise the geek would have been more than happy to say who it was.
Betfair have now removed the post and stated there's no issues so I can only assume it was another geek marketing push unless he posts more details of these so called 'security issues' Might be worth you reiterating your post into the BA splash screen, Gary, just to assure users there are no issues with BA as you know how these things can spread once rumours get put out there.
-
Captain Sensible - Posts: 2923
- Joined: Sat Nov 19, 2005 2:29 pm
by Captain Sensible » Fri Aug 16, 2013 12:37 pm
3rd Party Vendor Applications and use of The Betfair API – Update
Betfair Customer Services
16 Aug 13 10:38
Yesterday a posting was made titled “Geeks Toy- Security Issues”. This has now been removed as it contravenes our terms and conditions relating to the promotion of third party products and services. The issue raised is historical and has been rectified. Any customers potentially affected were contacted by both the third party vendor and Betfair offering suitable advice. We are not aware of any existing security issues with any licensed third party API products. If you have any further questions please email bets@betfair.com.
Betfair Customer Services
16 Aug 13 10:38
Yesterday a posting was made titled “Geeks Toy- Security Issues”. This has now been removed as it contravenes our terms and conditions relating to the promotion of third party products and services. The issue raised is historical and has been rectified. Any customers potentially affected were contacted by both the third party vendor and Betfair offering suitable advice. We are not aware of any existing security issues with any licensed third party API products. If you have any further questions please email bets@betfair.com.
-
Captain Sensible - Posts: 2923
- Joined: Sat Nov 19, 2005 2:29 pm
by peleus » Wed Aug 28, 2013 1:20 am
Invalid thread. Please go back.
I guess they already took it out.
Nothing is coincidence. 
- peleus
- Posts: 41
- Joined: Tue Apr 23, 2013 11:41 pm
7 posts
• Page 1 of 1
Who is online
Users browsing this forum: Bing [Bot] and 46 guests