Τι είναι το Chromebleed; The bug heartbleed, which we published on Tuesday and revealed by Google's security researchers, has compromised at least 66% of websites according to the team that discovered it.
Whenever the data (passwords, ονόματα χρηστών, κλπ) αποστέλλονται μέσω του Διαδικτύου, κρυπτογραφούνται ή θα μετατρέπονται σε κώδικα, για να μην μπορούν οι hackers να έχουν πρόσβαση. Αυτό όμως δεν συμβαίνει αν κάποιος αξιοποιήσει το ελάττωμα Heartbleed. Η ευπάθεια επιτρέψει στους hackers να σπάσουν την encryption και να έχουν πρόσβαση σε μηνύματα ηλεκτρονικού ταχυδρομείου, κωδικούς πρόσβασης, τα στιγμιαία μηνύματα και άλλα πολλά. Αν ανακαλύφθηκε μόλις, το error has been around for two years.
How can you protect yourself?
You should check if the websites that useste, are affected by the vulnerability. To be able to check without having to run scripts manually, you can download a Chrome extension that will do it for you automatically, The Chromebleed, will alert you when a site you visit is not secure.
You can also link to a website set up for this very purpose just to check a site before making a "secure connection". The website of Filippo Valsorda we had published it since the first day of the announcement.
What else should I do? Keep track of your bank and credit card reports for some unusual activity, as the information that may have leaked could have been used by hackers. Some sites, such as tech news Ars Technica, have asked their users to change their passwords. It would be good to change your passwords anyway. But beware, before you change, check out the site with the Google Chrome plugin mentioned above.
