Skip to main content

"Heartbleed" Bug causes major security headaches across the Internet websites

A confounding computer bug called "Heartbleed" is causing major security headaches across the Internet as websites scramble to fix the problem and Web surfers wonder whether they should change their passwords to prevent theft of their email accounts, credit card numbers and other sensitive information.

Heartbleed creates an opening in SSL/TLS, an encryption technology marked by the small, closed padlock and "https:" on Web browsers to signify that traffic is secure. The flaw makes it possible to snoop on Internet traffic even if the padlock had been closed. Interlopers could also grab the keys for deciphering encrypted data without the website owners knowing the theft had occurred, according to security researchers.

The problem affects only the variant of SSL/TLS known as OpenSSL, but that happens to be one of the most common on the Internet. About two-thirds of Web servers rely on OpenSSL, Chartier said. That means the information passing through hundreds of thousands of websites could be vulnerable, despite the protection offered by encryptions. Beside emails and chats, OpenSSL is also used to secure virtual private networks, which are used by employees to connect with corporate networks seeking to shield confidential information from prying eyes. Yahoo, Google and Facebook confirmed they had been affected by the OpenSSL flaw and had applied fixes to their systems.

Yahoo, which has more than 800 million users around the world, said Tuesday that most of its popular services had been fixed, but work was still being done on other products that it didn't identify. The repairs have been made on a list of services that includes its home page, search engine, email, finance and sport sections, Flickr photo-sharing service and its Tumblr blogging service. Security experts said Yahoo users, in particular, should change their passwords, because that company had not completely patched its software until after the flaw became public. On Tuesday afternoon, while looking for vulnerabilities, researchers reported that they had been able to capture user names and passwords from Yahoo.

Google is so confident that it inoculated itself against the Heartbleed bug before any damage could be done that the Mountain View, California, company is telling its users they don't have to change the passwords they use to access Gmail, YouTube and other product accounts. More than 425 million Gmail accounts alone have been set up worldwide.

Facebook, which has more than 1.2 billion account holders, also believes its online social network has purged the Heartbleed threat. But the company encouraged "people to take this opportunity to follow good practices and set up a unique password for your Facebook account that you don't use on other sites."

Twitter and e-commerce giant Amazon say their websites weren't exposed to Heartbleed.
The folks over at Mashable have also set up a handy list of other services for which you might need to change your password, thanks to Heartbleed.

Comments

Popular posts from this blog

Mobile Phone Repair Experts

  https://www.bigfix.in/mobile-phone-repair-service-center-near-me/ Call: 7305575757 We offer best mobile phone repairing services for all branded smartphones & tablets, across India through our network of certified mobile phone repair service centers in Chennai, Hyderabad, Delhi, Mumbai, Pune, Bangalore and 250 more locations. Over the years we have handled more than 1,50,000 transactions with high level of customer satisfaction. We handle all major mobile phone and tablet brands including Samsung , Apple , BlackBerry , Micromax , Nokia , Sony , LG , Motorola , Spice Mobiles, Karbonn , HTC , Xolo , Lava Mobiles , Lenovo , Xiaomi , Huawei , Sony Ericsson, Asus , Dell, Lemon Mobiles, Wynncom, Videocon Mobiles, Fly Mobile, Acer, iBall, Intex, Zen Mobile, Maxx, GFive, Rage, Onida, Arise, Accord Mobile, Binatone, Philips, HCL, DataWind, Alcatel, Byond, Gionee , iberry, Mercury, Microsoft , Milagrow, Mitashi, Swipe, UMI, Zopo, ZTE, Zync, Celkon, Oppo , Panasonic , Hitech, Ad

Electric Vehicles : Sensors and Programming

With the oil crisis of 1970s, which affected our day to day lives in unfathomable ways, the transport industry too took a toll. A steep increase in the fuel prices meant less use of personal vehicles and thus lesser profits for the automotive industry. With no end in sight to the continuous and exponential rise in fuel prices, it was only in the definite interest of the companies to shift from oil as a fuel to better alternatives. Even though the idea of electric vehicles was prominent then, with some prototypes in existence, the major issue was mileage. With the meager coverage it gave, those cars were pretty useless other than for going shopping inside the city. Long drives and top speeds, the very component of thrill and adventure that car enthusiasts love about a drive was missing. There was no adrenaline rush in Battery Electric Vehicles compared to the traditional Internal Combustion Engine counterparts.  That is until, the TESLA ROADSTER unveiled in 2008. This c

Telecom Sector, April News Roundup

✓ Airtel signs Rs.7,636 crore deal with Nokia to get ready for 5G era  ✓ BSNL to revise Rs 9,000 crore worth tender for 4G gear purchase  ✓ India`s electronics manufacturing can gain from China`s loss, says Prasad  ✓ RIL doubles down on its debt reduction plan with proposed rights issue  ✓ JioMart and Whatsapp will empower 3 crore small Kirana shops: Mukesh Ambani  ✓ After Facebook deal, Jio's valuation higher than RIL's legacy business  ✓ Facebook deal to help RIL to be debt-free by March 2021: Credit Suisse  ✓ Facebook-Jio collaboration unlikely to help Whatsapp Pay rollout  ✓ Jio Platforms to use Rs.28,000 crore from Facebook to redeem RIL OCPS, cut debt ✓ WhatsApp looks at lending after payments nod  ✓ Airtel $1 billion India 4G deal brings respite to Nokia after China 5G defeat  ✓ Nokia quarterly revenue to get 5G boost before coronavirus impact felt  ✓ Entry level, refurbished smartphones to be in focus, once sales resume  ✓ After Zoom, research finds Microsoft Teams vuln