Major Internet security flaw: Heartbleed bug

You may, or may not have read or heard about this Heartbleed bug, but if you haven’t, you ought to be aware. If you have, what do you do about it?

Heartbleed bug

Heartbleed bug

Firstly, the Heartbleed bug affects SSL, or Secure Sockets Layer encryption and the sites using it. This bug is a problem when a user exchanges passwords between the SSL server and their computer. The bug can eavesdrop and extract user information, compromising their account.

Nobody actually knows how many sites have been compromised, but now that it’s commonly known, it’s likely the crooks will be working hard to extract as much data as possible.

Changing your password will help, but only if the site has updated its security.

How do you know if the site is vulnerable? There’s a useful checking tool online where you can enter the domain of the site you wish to use to check for Heartbleed bug vulnerability.

Here’s the link to check a site for Heartbleed bug vulnerability.

Obviously, with a major bug such as this it’s wise for the sites to be updates as soon as possible. Once they’ve been updated, it’s recommended you change your passwords.

Here’s more on the Heartbleed bug.