EDIT: Fully refunded, thanks BP!
Is it possible the javascript vulnerability had caused any other bugs with addresses? I sent one to your Hot Potato when it was at 13.5~, that was definitely yours (it's popped up several times in the past), and was unable to get the 'verifying payment' to show up.
Of course an email was sent, mind you I may have mislabelled the title as I didn't know about this JS attack until just now. Still waiting on my other refunds too.
Now, on to more important issues. Bitpotato.com has just suffered from a small "Script Kiddie" attack. A user injected javascript into the page that replaced our wallet addresses with a single one: Li9kkpAuRLP2dXdgyxtgwDFPWE2V2s2Kzu.
Though we patched the vulnerability within minutes, they did manage to siphon away 177 LTC. We are refunding all these transactions out of pocket, due to our oversight. As we've said before, we feel our integrity is much more valuable to our business than anything else, and want to work directly with our users to improve the site, and right any wrongs that occurred due to an oversight on our end. We appreciate your continuing understanding and support.
Please, if you have sent a payment to Li9kkpAuRLP2dXdgyxtgwDFPWE2V2s2Kzu, send in a support email and get your refund! (Support email address is in the FAQ section of our website)
Also, keep the suggestions coming!
Best Regards,
The Bit Potato Staff
Though we patched the vulnerability within minutes, they did manage to siphon away 177 LTC. We are refunding all these transactions out of pocket, due to our oversight. As we've said before, we feel our integrity is much more valuable to our business than anything else, and want to work directly with our users to improve the site, and right any wrongs that occurred due to an oversight on our end. We appreciate your continuing understanding and support.
Please, if you have sent a payment to Li9kkpAuRLP2dXdgyxtgwDFPWE2V2s2Kzu, send in a support email and get your refund! (Support email address is in the FAQ section of our website)
Also, keep the suggestions coming!
Best Regards,
The Bit Potato Staff
Is it possible the javascript vulnerability had caused any other bugs with addresses? I sent one to your Hot Potato when it was at 13.5~, that was definitely yours (it's popped up several times in the past), and was unable to get the 'verifying payment' to show up.
Of course an email was sent, mind you I may have mislabelled the title as I didn't know about this JS attack until just now. Still waiting on my other refunds too.