HeartBleed

D4V1DC · Apr 2014

Little off topic but thought some should know if you don't.

http://heartbleed.com/

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet.

Shadownami92 · Apr 2014

Something I was wondering is that if its a problem is SSL, aren't you really only vulnerable if you are using internet via wifi? It seems like someone would have to be on the same network as you in order to collect any of the information.

Makkon · Apr 2014

Just a reminder in case anyone missed the news. You're probably all fine, but better safe than sorry.

http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/

Change your passwords AFTER said site has applied the patch. Good luck guys, hope no one gets boned from this stupid exploit.

JohnnyRaptor · Apr 2014

For the love of god protect polycount any way you can!

StephenVyas · Apr 2014

Wow, it even forced the CRA to shutdown and push deadlines back for Online Returns.
http://www.theglobeandmail.com/technology/canada-revenue-agency-shuts-online-services-over-security-concerns/article17892916/

On the good side, it seems no Can. banks were vulnerable.
http://www.reddit.com/r/PersonalFinanceCanada/comments/22m74h/check_if_your_bank_is_vulnerable_to_the/

passerby · Apr 2014

Shadownami92 wrote: »

Something I was wondering is that if its a problem is SSL, aren't you really only vulnerable if you are using internet via wifi? It seems like someone would have to be on the same network as you in order to collect any of the information.

SSL has nothing to do with WiFi, it is what is used to secure connection to servers. If it isn't working it means secure data could be sent as plaintext.

HeartBleed

Replies