That's it heartbleed, the bug discovered in the protocol OpenSSL, is much more serious than it may sound and affect almost all users that they use online services.
This is a technical issue that has an impact on our everyday lives, since it affects webmail services such as those of Google and Yahoo, until financial institutions, so our transactions.
The worst is how one can not say with certainty for if and which have been affected by this bug - either companies or users. Let's see why.
What is Heartbleed
It's a security gap in the open-source standard encryption communications OpenSSL - when there is a secure connection between the server and the user. It was named why it affects it heartbeat, which is the way (reminiscent of heartbeat) to confirm how there is communication between the two ends, e.g. your computer and a server.
What kinds of apps are affected
Surfing on Website, email, instant messaging, as well as VPNs (Virtual Private Networks), in the end, almost everything in our online activity.
How many servers are vulnerable
Experts estimate that about two-thirds of the servers worldwide were affected.
Who He discovered This makes it a perfect choice for people with diabetes and for those who want to lose weight or follow a balanced diet. heartbleed?
Researchers of the electronic security company Codenomicon and Google.
How long were they exposed servers
Ο codes of OpenSSL that had the security gap was released on March of 2012.
Must to we are worried;
Yes! Our personal information that we believe to be safe is basically not There is a possibility to be in the possession of fraudsters who managed to extract them from servers that are stored. But one can not know if data has been stolen from X's servers, even if they had the specific problem.
How can I know if my items have been stolen?
In fact there is no way, since, due to this security gap, servers could not recognize the difference between real users and a data capture / theft attempt.
If you want to find out if a site has been affected by the Heartbleed bug, you can check it from this the tool. By typing its address, you can see if it is in the list of affected ones. Two more indicative lists are available here and here and yet another tool here.
What must to I am doing;
All you can do is to change access details to services it uses. But this will make sense if the site is has informed them servers of with the security update.
If not has made the relevant updates, there is the your new items to be found in the hands of the hacker, who probably are in the process of pumping user data from the servers that have the problem.
Source: e-pcmag.gr
