News

Serious OpenSSL vulnerability discovered

Heartbleed Bug in OpenSSL's SSL/TLS encryption affects a majority of web servers, forcing many server admins to update immediately

heartbleed

Here’s what you need to know: the security vulnerability in OpenSSL – aka the Heartbleed Bug – allows access to the memory of systems that are affected with the bug. It’s been identified over the past few days and caused a bit of a stir in the sysadmin and open source community as people scrambled to update their own systems.

Luckily, a fix has been issued. For anyone interested, they can find details on how to upgrade and secure their system on a dedicated page for the bug. Apparently this is not an error in SSL/TLS, and more of an issue with its implementation of it in OpenSSL.

It’s not known if there have been any breaches using this exploit yet, however everyone us urged to fix their security right now before they become the first.

×