heartbleed bug

"Storm" and "traffic jam" on the Internet due to Heartbleed

Its publication predicts major disturbances and delays in the operation of the Internet for the next few weeks Post, due to simultaneous efforts to fix encryption systems on hundreds of thousands of websites, due to the infamous heartbleed bug.


Citing security experts, the Washington Post reports that estimates of the problems that have arisen due to the disclosure of the bug are increasing daily. What started as a simple "annoying" event, which required her passwords, seems to be developing into something much more serious, as it appears that experienced hackers can exploit the to create fake websites to trick Internet users into providing personal data.

As noted, the extent of work required to fix this particular dimension of the bug – which allows for certificate theft (security certificates) which confirm that a website is authentic - could overload the systems designed to keep the Internet reliable.

"Imagine suddenly discovering that all the doors that everyone uses is vulnerable - that all can be broken," said Jason Hillley, an Atlantic Councils security officer at Washington. "The kinds of evil that could happen are limited only by the imagination of the perpetrators."

According to some estimates, Heartbleed affected two-thirds of the Internet, forcing a large number of users to change their codes to popular online services. Also, the wave of forced updates to which threatened websites will go will result in uploads of download browsers and security site checks.

As reported in a BBC report, analysis by Netcraft shows that 500.000 websites are vulnerable to the Heartbleed bug. As for the security certificates, Paul Matton, the company's analyst, noted that "it would be safer to assume that all 500.000 certificates have been compromised." "Most competent authorities offer to renew them for free, so there is no excuse for not taking action." However, he added, renewing hundreds of thousands of certificates will impact web browsing speeds. When a user visits a site, a standard check is made to see if the security certificate has been revoked. This normally doesn't cause any delays – however this is now changing due to Heartbleed as many certificates are being revoked and renewed daily. As Robin Alden, executive of the Comodo company, which operates in the field of these certificates, told PC World, tens of thousands of certificates have been issued after Heartbleed. In particular, the previous week he spoke of a tenfold/twelvefold renewal rate.

The "storm" of Heartbleed seems to be expanding to Android as well, as, according to data cited by a Guardian publication, at least four smartphones με το συγκεκριμένο λειτουργικό στις και δεκάδες εκατομμύρια παγκοσμίως μπορούν να στοχοποιηθούν εξαιτίας του bug. Παγκοσμίως, τα ευάλωτα κινητά θα μπορούσαν να ανέρχονται στα 50 εκατ., όπως επισημαίνεται δεδομένων υπολογισμών που βασίζονται στην ανακοίνωση της Google, running a special version of Jelly Bean (Android 4.1.1) are vulnerable. The calculations were made using data provided exclusively to the British paper by analytics firm Chitika.

Source: naftemporiki.gr

iGuRu.gr The Best Technology Site in Greecefgns

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).