TweakTown
Tech content trusted by users in North America and around the world
6,203 Reviews & Articles | 40,067 News Posts

Heartbleed OpenSSL security bug plagues millions of Internet users

Heartbleed OpenSSL security vulnerability has hit scores of websites, leaving millions of users at risk of username and password theft, researchers say

| Hacking & Security News | Posted: Apr 9, 2014 7:30 pm

The "Heartbleed" security vulnerability discovered by the security company Codenomicon found that the OpenSSL bug has opened up millions of Internet users to security risk. Although OpenSSL is designed to help keep sensitive information secure, Heartbleed may have led to website visitors susceptible to spying, according to researchers.

 

TweakTown image news/3/6/36920_01_heartbleed_openssl_security_bug_plagues_millions_of_internet_users.jpg

 

Heartbleed targets any OpenSSL version over the past two years (OpenSSL 1.0.1 up to 1.0.1f), and cybercriminals are able to access the server's system memory, and encrypted information such as usernames, passwords, debit and credit card information is up for grabs.

 

Here is what Codenomicon noted:

 

"We have tested some of our own services from attacker's perspective. We attacked ourselves from outside, without leaving a trace. Without using any privileged information or credentials we were able to steal from ourselves the secret keys used for our X.509 certificates, usernames and passwords, instant messages, emails and business critical documents and communication."

NEWS SOURCESNewsday.com, Heartbleed.com

Related Tags

Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.

Do you get our news RSS feed? Get It!

Got an opinion on this news? Post a comment below!

Latest News Posts

View More News Posts

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases