18 Apr '14, 2am

Heartbleed Bug Patch Underway, But Was It Really the Problem?

More clarity about the vulnerability of banking and credit card data and other sensitive information such as website logins and passwords came this week, when a Google researcher and a team from the Finnish security firm Codenomicon separately reported the existence of an Internet security flaw that is being called the Heartbleed Bug. What makes Heartbleed so insidious is the fact that it can allow hackers to snatch data from a server’s memory 64 kilobytes at a time—even if the information is supposedly encrypted—without leaving a trace. While the end user takes comfort in the ability of SSL/TLS encryption to keep his or her data from prying eyes, the “https” in the URL and the closed padlock icon are a cruel trick. Since the news broke, websites have responded, updating their versions of OpenSSL, one of the most commonly used variants of SSL/TLS. These protocols were desi...

Full article: http://spectrum.ieee.org/riskfactor/telecom/security/hear...

Tweets

Heartbleed Bug Bit Before Patches Were Put in Place

Heartbleed Bug Bit Before Patches Were Put in P...

spectrum.ieee.org 18 Apr '14, 2pm

story raised the interesting issue of how and when to disclose such a major security problem. Apparently, once the program...

Heartbleed Bug Patch Underway, But Was It Reall...

spectrum.ieee.org 11 Apr '14, 8pm

More clarity about the vulnerability of banking and credit card data and other sensitive information such as website login...

Has Heartbleed Made You Think Twice About Open Source Security? Think Again.

Has Heartbleed Made You Think Twice About Open ...

spreecommerce.com 17 Apr '14, 1pm

Has Heartbleed Made You Think Twice About Open Source Security? Think Again. By now, unless you have been woefully under-i...

Just blogged: Bug takes out HostGator, BlueHost...

domainincite.com 17 Apr '14, 12pm

Our NetOps team addressed the source of the problems affecting some customers: a bug in the firmware utilized in our vendo...

EBN - Hailey Lynne McKeefry - Crowdsourcing the...

ebnonline.com 18 Apr '14, 1pm

Many minds make light work: That's the wisdom of crowdsourcing. A new online community is hoping to leverage the power of ...

Officials Provide Tips for Heartbleed Security ...

defense.gov 19 Apr '14, 10am

Officials Provide Tips for Heartbleed Security Vulnerability By Jim Garamone American Forces Press Service WASHINGTON, Apr...

Crowdsourcing the Counterfeiting Problem: Count...

ebnonline.com 18 Apr '14, 2pm

Many minds make light work: That's the wisdom of crowdsourcing. A new online community is hoping to leverage the power of ...

Our @MentorPCB forums are underway! There’s sti...

mentor.com 25 Apr '14, 9pm

Attend a Mentor PCB forum and discover the ground-breaking, easy-to-use innovations in the Xpedition flow. In this full-da...

#Heartbleed Aftermath: How to Effectively Diagnose Your Affected Services

#Heartbleed Aftermath: How to Effectively Diagn...

intridea.com 14 Apr '14, 2pm

Since OpenSSL's Heartbleed bug hit the news last Monday , the media has covered the obvious bases: from what it is and wha...

Heartbleed bug: Dynadot alerts its users to cha...

domaingang.com 11 Apr '14, 7pm

We wanted to contact you regarding the recent Heartbleed OpenSSL security bug. We have already patched our website and upd...

NSA said to have used Heartbleed bug, exposing ...

stripes.com 11 Apr '14, 8pm

The sign outside the National Security Agency campus at Fort Meade, Md., is seen in this June 6, 2013, file photo. Patrick...

Can We Really Trust E-Cigarettes? The Good, The Bad, and The Ugly

Can We Really Trust E-Cigarettes? The Good, The...

ecosalon.com 21 Apr '14, 7am

The biggest problem with e-cigarettes is ingredient inconsistency between brands, and the lack of regulation is causing qu...

#Heartbleed bug: Which Domain Registrars are sa...

domaingang.com 10 Apr '14, 9pm

Likely to be vulnerable (known use OpenSSL) moniker.com fabulous.com namesilo.com directi.com dotster.com What to do: Wait...