Time to change your password? Massive Security Flaw “Heartbleed” bleeds millions of passwords

A serious bug “Heartbleed” discovered by researchers at Google Inc. and a Finnish security firm Codenomicon that could expose your password, credit card information and other sensitive data has been recently discovered resulting into recommending password change for millions of web users

The bug remained undiscovered for more than 2 years, since December 2011.

The bug remained undiscovered for more than 2 years, since December 2011.

The bug remained undiscovered for more than 2 years, since December 2011. The bug Heartbleed can be exploited by cybercriminals to procure personal data, cryptographic keys, as well as site’s impersonation in order to collect more information. It is untraceable making it difficult to prove whether it has been compromised or not.

Currently, researchers are recommending web users to change all of their passwords. The breach involves SSl/TLS, which is an encryption with the closed padlock icon and ‘https:’ on web browsers. Heartbleed security flaw can make traffic on web prying even if the padlock is closed and notifies a secure connection.

What makes it dangerous and much more of a threat is the fact that OpenSSL, which is an open-source encryption technology, is presently used by more than two-third of web servers. It supports many HTTPS sites that collect data and are normally indicated by the padlock icon in the right hand site of the browser site, indicating visitors that that information visitor’s are sending is hidden from prying eyes.

Major tech giants such as Google, Facebook, Amazon and Yahoo browsed by millions of users every day said that they have already initiated steps in order to secure their sites from the flaw. Security researchers demonstrated the flaw by stealing Yahoo e-mail logins on 8th April, however Yahoo has already fixed the security flaw across its many sites including Flickr, Tumblr.

It has been recommended that users must update their passwords across all portals and signed in sites they use, only after the site they’re going to the password has confirmed whether they have taken the proper measures to fix Heartbleed and make it a secure connection. E-mail from most sites are expected to inform users instructing password change if at all necessary.

 

Avatar
Carrie Ann
Carrie Ann is Editor-in-Chief at Industry Leaders Magazine, based in Las Vegas. Carrie covers technology, trends, marketing, brands, productivity, and leadership. When she isn’t writing she prefers reading. She loves reading books and articles on business, economics, corporate law, luxury products, artificial intelligence, and latest technology. She’s keen on political discussions and shares an undying passion for gadgets. Follow Carrie Ann on Twitter, Facebook

Recent Posts

Elior acquires Nestor, the single meal food delivery startup

Elior acquires Nestor, the single meal food delivery startup

Elior, the corporate catering company, has acquired the French startup Nestor for an undisclosed amount. Nestor, a Paris, France-based food delivery service, started in 2015 with a
2 days ago
Axa gears to buy office space worth €800m in European cities

Axa gears to buy office space worth €800m in European cities

Axa Investment Managers, the French fund house, is not too worried about predictions that the post-pandemic world will see more people working from home and office real estates shr
2 days ago
ShareChat raises $502 million at $2 billion valuation

ShareChat raises $502 million at $2 billion valuation

ShareChat, the Indian owner of short video app Moj, has raised $502 million in the series E round of funding, pushing its value at $2.1 billion in the market. The five-year-old com
3 days ago
Small business groups form coalition to lobby for strong antitrust laws

Small business groups form coalition to lobby for strong antitrust laws

Small merchant groups are coming together to rally for strong antitrust laws to prevent big conglomerates like Amazon from swallowing up the smaller traders and businesses. Trade g
3 days ago
Vitol’s profit soars during 2020 oil crisis

Vitol’s profit soars during 2020 oil crisis

The world’s largest independent oil trader Vitol made record profits in 2020 as the fluctuations in the global energy markets resulted in a windfall. Vitol suffered an $85 billio
4 days ago
Seadrill proposes debt write off of $4.8 billion

Seadrill proposes debt write off of $4.8 billion

Seadrill Ltd., a deepwater drilling contracting company, owned by billionaire John Fredriksen, said it is ready to write off a debt of over $4.8 billion, giving lenders a 99 perce
5 days ago