heartbleed bug Articles

Embarrassment over Heartbleed leads to cooperation from tech leaders

  • 25/04/2014 at 00:33 by It's a Gadget Staff
  • Technology

Security KeyTechnology giants like Google, Microsoft and Facebook have finally decide to bind together to create a collaborative effort to secure OpenSSL, following the massive Heartbleed vulnerability that not only presented many opportunities for exploitation by hackers, but gave the government backdoor access into the majority of online services.

Heartbleed might have caught people off guard with its scope, but not many people were surprised by its actual existence. OpenSSL has been underfunded and under monitored since the beginning of its use.

+Continue Reading

NSA allegedly exploited the Heartbleed Bug for at least 2 years

  • 11/04/2014 at 22:22 by It's a Gadget Staff
  • News

NSA Heartbleed BugBloomberg sources report today that NSA security agency knew and exploited the vulnerability known as the “Heartbleed Bug” for at least 2 years. The move was apparently not to spy on citizens. It’s being said that the NSA have used the Heartbleed vulnerability to find passwords regularly on targets, and gather sensitive information.

What makes it such an issue for the majority of users of major websites is the backdoor is kept open. Criminal groups and hackers, identity and financial thieves and the spy agencies of other governments could have easily used the same tactic.

+Continue Reading

Heartbleed Bug may undo crucial web encryption and leak passwords

  • 09/04/2014 at 03:09 by It's a Gadget Staff
  • News

Heartbleed BugA new alarming vulnerability, entitled Heartbleed, has been found to compromise OpenSSL services. Not only is it able to access servers on sites that use OpenSSL and siphon information on users en masse, but it can potentially create dummy servers to further gain information from users, and decrypt data now and in the future.

It was a shocking revelation. The bug, codenamed Heartbleed, is officially designated CVE-2014-0160 from the joint Codenomicon-Google group that discovered it. They found that is affects both Apache and nginx, which account for a stark majority of websites.

+Continue Reading