Time to change your password? Massive Security Flaw “Heartbleed” bleeds millions of passwords

A serious bug “Heartbleed” discovered by researchers at Google Inc. and a Finnish security firm Codenomicon that could expose your password, credit card information and other sensitive data has been recently discovered resulting into recommending password change for millions of web users

The bug remained undiscovered for more than 2 years, since December 2011.

The bug remained undiscovered for more than 2 years, since December 2011.

The bug remained undiscovered for more than 2 years, since December 2011. The bug Heartbleed can be exploited by cybercriminals to procure personal data, cryptographic keys, as well as site’s impersonation in order to collect more information. It is untraceable making it difficult to prove whether it has been compromised or not.

Currently, researchers are recommending web users to change all of their passwords. The breach involves SSl/TLS, which is an encryption with the closed padlock icon and ‘https:’ on web browsers. Heartbleed security flaw can make traffic on web prying even if the padlock is closed and notifies a secure connection.

What makes it dangerous and much more of a threat is the fact that OpenSSL, which is an open-source encryption technology, is presently used by more than two-third of web servers. It supports many HTTPS sites that collect data and are normally indicated by the padlock icon in the right hand site of the browser site, indicating visitors that that information visitor’s are sending is hidden from prying eyes.

Major tech giants such as Google, Facebook, Amazon and Yahoo browsed by millions of users every day said that they have already initiated steps in order to secure their sites from the flaw. Security researchers demonstrated the flaw by stealing Yahoo e-mail logins on 8th April, however Yahoo has already fixed the security flaw across its many sites including Flickr, Tumblr.

It has been recommended that users must update their passwords across all portals and signed in sites they use, only after the site they’re going to the password has confirmed whether they have taken the proper measures to fix Heartbleed and make it a secure connection. E-mail from most sites are expected to inform users instructing password change if at all necessary.

 

Carrie Ann
Carrie Ann is Editor-in-Chief at Industry Leaders Magazine, based in Las Vegas. Carrie covers technology, trends, marketing, brands, productivity, and leadership. When she isn’t writing she prefers reading. She loves reading books and articles on business, economics, corporate law, luxury products, artificial intelligence, and latest technology. She’s keen on political discussions and shares an undying passion for gadgets. Follow Carrie Ann on Twitter, Facebook

Recent Posts

Supply chain crisis bad news for automotive industry leaders

Supply chain crisis bad news for automotive industry leaders

The world’s biggest car companies are on track to lose production of 7.7 million vehicles in 2021. The forecast advices automakers on supply chain and other issues.
2 days ago
Scammers dupe Apple fans with free bitcoin lure

Scammers dupe Apple fans with free bitcoin lure

Savvy scammers used a fake event stream, a fake Apple website, and the promise of free bitcoin to lure fans into opening up their wallets.
3 days ago
Japan’s MUFG offloads Union Bank to U.S. Bancorp for $7.3 billion

Japan’s MUFG offloads Union Bank to U.S. Bancorp for $7.3 billion

The total amount of cash to be received as part of MUFG Union Bank’s sale to Bancorp is $7.3 billion (800 billion yen).
4 days ago
Evergrande: A black swan event that could spook markets

Evergrande: A black swan event that could spook markets

EverGrande is now known as the “world’s most indebted property developer” and serves as a symbol of corporate excess.
5 days ago
Moderna vaccine more effective than Pfizer, study says

Moderna vaccine more effective than Pfizer, study says

Moderna’s Covid-19 vaccine does a slightly better job of preventing coronavirus-related hospitalizations and emergency department visits.
7 days ago
iPhone 13 and iPhone 13 Pro: Specifications, Release Date, Features and much more

iPhone 13 and iPhone 13 Pro: Specifications, Release Date, Features and much more

Apple iPhone 13 Pro and iPhone 13 Pro Max can be a hit with its ever new technology A15 Bionic chip and other cool profound features.
1 week ago