Earlier this week ‘Heartbleed’ turned to be a major attack on internet security that created havoc and put security of millions of passwords, credit card numbers and other potential personal information on verge of threat. Experts are still assessing the damage done by Heartbleed. The major concern here is that a large number of web servers across the World Wide Web still have security holes and are undetected yet. To prevent the trap users probably don’t have much options until the affected websites and servers fix the glitch.
What Is Heartbleed?
Heartbleed directly attacks the renowned the encryption technology. Encryption protects online accounts online accounts for email, instant messaging and e-commerce. The bug was first detected and discovered by a team of researchers from the Finnish security firm Codenomicon and a Google Inc. researcher. Both detected the bug separately. Researchers are yet unclear if Heartbleed has stolen any information so far since the bug was in the domain undetected for more than two years.
How Heartbleed Works?
Heartbleed directly penetrates in the holes exist in SSL/TLS and HTTPS. The bug has every power to snoop the internet traffic even if the padlock is closed. The problem probably affects the variant of SSL/TLS known as OpenSSL, since this is the most common on the Internet, threat perception is also big. Yahoo said on Tuesday that most of the popular services it offers had been fixed and work is still going on other products to track if threat exists there.
Being a user of online services you can do your bit to escape the threat. Change your passwords but wait until your website ensures you that they have fixed the problem.
Story: What Is Heartbleed And How Does It Work
Latest posts by Sumant Singh (see all)
- 10 Words that Enhance Trust in a Blog Post - August 23, 2017
- WhatsApp Text Status Feature Gets Colored Backgrounds, Custom Fonts - August 22, 2017
- Google Rolls Out a QA Section for Business Listings - August 18, 2017