The MacValley blog

 

Welcome to the MacValley blog, your first stop for all the latest MacValley news and views.

 

Tom Briant

The MacValley blog

Editor: Tom Briant

 

Click here to email Tom

Click here for Tom's profile

 

 

To search the blog posts please use the box below

Sunday, April 13, 2014

Heartbleed Special! Read At Once!

"Heartbleed" bug warning:  Time to change passwords everywhere

"Heartbleed," the software bug uncovered Monday, has caused serious security headaches this week as companies scramble to fix a major flaw that has left most of the world's active websites vulnerable to attack.

The threat comes from a bug that's able to exploit a problem in a free set of encryption tools called OpenSSL. Heartbleed would let a hacker grab chunks of data from a server, including passwords and other sensitive information. And this involves even so-called secure sites, those with the little lock icon on top.

the little lock icon (HTTPS) we all trusted to keep our passwords, personal emails, and credit cards safe, was actually making all that private information accessible to anyone who knew about the exploit.

Thankfully the major banks, Apple, Google and Microsoft have used their own front end security architecture and are not impacted by this, but most web sites just use OpenSSL "as is" for their security encryption.

It is really surprising that this seems to have been in place for close to two years and we are just now finding out about it."

http://blogs.marketwatch.com/thetell/2014/04/09/heartbleed-bug-warning-time-to-change-passwords-everywhere/




Heartbleed: Change Your Passwords—Carefully

http://live.wsj.com/video/heartbleed-change-your-passwordscarefully-2014-04-09/F3DDAE69-31C7-4E8D-B7C0-306A6E3CD680.html




The 5 Things To Do About the New Heartbleed Bug

http://www.theatlantic.com/technology/archive/2014/04/the-5-things-to-do-about-the-new-heartbleed-bug/360395/




5 rules for using the Internet after Heartbleed

http://www.marketwatch.com/story/5-rules-for-using-the-internet-after-heartbleed-2014-04-09




'Heartbleed' bug forces Canada tax agency to shut down online access

http://www.marketwatch.com/story/heartbleed-bug-forces-canada-tax-agency-to-shut-down-online-access-2014-04-09




How to Check if a Site Is Safe From 'Heartbleed'

http://www.theatlantic.com/technology/archive/2014/04/how-to-check-if-a-site-is-safe-from-heartbleed/360417/




Heartbleed: Why websites were caught unprepared

http://www.marketwatch.com/story/heartbleed-why-websites-were-caught-unprepared-2014-04-10




Here's How To Protect Yourself From The Massive Security Flaw That's Taken Over The Internet

http://www.businessinsider.com/heartbleed-bug-explainer-2014-4

http://heartbleed.com

http://www.market-ticker.org/akcs-www?post=228919

Posted by Thomas Briant at 1:06 PM

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

 

 

Blog Archive