Remember Heartbleed? Several weeks ago, the exposure of this security bug chilled the Internet, highlighting once again that even the seemingly unbreakable can be hacked. In the case of the Heartbleed vulnerability, encrypted data was at risk of theft. Sites potentially vulnerable to Heartbleed urged users to change their passwords. They ranged from Canada’s Revenue Agency to Amazon Web Services to Yahoo to Reddit. Although angst waned following a massive patching effort, Heartbleed has emerged from its bunker.
Heartbleed is not alone - there are lots of other vulnerabilities and issues with open source, but if you keep your libraries up to date then you should be fine. there are also automatic solutions for doing so. If you develop in open source you should check them out.
Loading ...
Heartbleed-Weary Tech Firms Show OpenSSL a Little Love
Posted by: Erika Morphy May 30, 2014 02:29 PMRemember Heartbleed? Several weeks ago, the exposure of this security bug chilled the Internet, highlighting once again that even the seemingly unbreakable can be hacked. In the case of the Heartbleed vulnerability, encrypted data was at risk of theft. Sites potentially vulnerable to Heartbleed urged users to change their passwords. They ranged from Canada’s Revenue Agency to Amazon Web Services to Yahoo to Reddit. Although angst waned following a massive patching effort, Heartbleed has emerged from its bunker.