The MacValley blog


Welcome to the MacValley blog, your first stop for all the latest MacValley news and views.


Tom Briant

The MacValley blog

Editor: Tom Briant


Click here to email Tom

Click here for Tom's profile



To search the blog posts please use the box below

Sunday, April 13, 2014

Heartbleed Special! Read At Once!

"Heartbleed" bug warning:  Time to change passwords everywhere

"Heartbleed," the software bug uncovered Monday, has caused serious security headaches this week as companies scramble to fix a major flaw that has left most of the world's active websites vulnerable to attack.

The threat comes from a bug that's able to exploit a problem in a free set of encryption tools called OpenSSL. Heartbleed would let a hacker grab chunks of data from a server, including passwords and other sensitive information. And this involves even so-called secure sites, those with the little lock icon on top.

the little lock icon (HTTPS) we all trusted to keep our passwords, personal emails, and credit cards safe, was actually making all that private information accessible to anyone who knew about the exploit.

Thankfully the major banks, Apple, Google and Microsoft have used their own front end security architecture and are not impacted by this, but most web sites just use OpenSSL "as is" for their security encryption.

It is really surprising that this seems to have been in place for close to two years and we are just now finding out about it."

Heartbleed: Change Your Passwords—Carefully

The 5 Things To Do About the New Heartbleed Bug

5 rules for using the Internet after Heartbleed

'Heartbleed' bug forces Canada tax agency to shut down online access

How to Check if a Site Is Safe From 'Heartbleed'

Heartbleed: Why websites were caught unprepared

Here's How To Protect Yourself From The Massive Security Flaw That's Taken Over The Internet

No comments:

Post a Comment



Blog Archive