web security Articles

NSA allegedly exploited the Heartbleed Bug for at least 2 years

  • 11/04/2014 at 22:22 by It's a Gadget Staff
  • News

NSA Heartbleed BugBloomberg sources report today that NSA security agency knew and exploited the vulnerability known as the “Heartbleed Bug” for at least 2 years. The move was apparently not to spy on citizens. It’s being said that the NSA have used the Heartbleed vulnerability to find passwords regularly on targets, and gather sensitive information.

What makes it such an issue for the majority of users of major websites is the backdoor is kept open. Criminal groups and hackers, identity and financial thieves and the spy agencies of other governments could have easily used the same tactic.

+Continue Reading

Heartbleed Bug may undo crucial web encryption and leak passwords

  • 09/04/2014 at 03:09 by It's a Gadget Staff
  • News

Heartbleed BugA new alarming vulnerability, entitled Heartbleed, has been found to compromise OpenSSL services. Not only is it able to access servers on sites that use OpenSSL and siphon information on users en masse, but it can potentially create dummy servers to further gain information from users, and decrypt data now and in the future.

It was a shocking revelation. The bug, codenamed Heartbleed, is officially designated CVE-2014-0160 from the joint Codenomicon-Google group that discovered it. They found that is affects both Apache and nginx, which account for a stark majority of websites.

+Continue Reading