Saturday, 12 April 2014

How the Heartbleed bug works


Credit: xkcd

As usual, xkcd is right on the money. / vulnerability vulnerable exploit exploiting hack hacker hacking theft OpenSSL sensitive data server revealed attacker usernames passwords credit card numbers dangerous allow access server's digital keys impersonate servers decrypt communications major new security vulnerability severe implications entire Web Internet bug server server's memory sensitive user data stored private data usernames passwords credit card numbers extremely serious issue Netcraft Internet research firm information protect protected security experts log into accounts afflicted sites patch patched problem confirm fix progress customer service teams information John Miller security research manager TrustWave security compliance firm Yahoo OKCupid sites caution red flag change passwords security experts confirmation fix further activity vulnerable site security patch change passwords sensitive accounts banks email first two-factor authentication another piece of identifying information /

No comments:

Post a Comment