The internet is abuzz with reports on the Heartbleed Bug and how it could be one of the biggest security threats the Internet has ever seen. Earlier this week, security researchers announced a security flaw in OpenSSL (a popular data encryption standard) that gives hackers the ability to extract massive amount of data from the services that we use every day and assume are mostly secure. The bug has exposed the potential vulnerability on any machine powering services that transmit secure information, like Facebook and Gmail.
We have already implemented remedial measures so as to secure your Business from any further security threats due to this bug.
What is the Heartbleed Bug?
Heartbleed is a flaw in OpenSSL, the open-source encryption standard used by majority of sites on the web to encrypt transmitted data that users want to keep secure. It basically gives you a "secure line" when you're sending an email or chatting on IM. Encryption works by making the sent data look illogical to anyone but the intended recipient.
Occasionally, one computer might want to check whether there's still a computer at the end of its secure connection, so it will send out what's known as a "heartbeat", a small packet of data that asks for a response.
Due to a programming error in the implementation of OpenSSL, the researchers found that it was possible to send a well-disguised packet of data that looks like one of these "heartbeats" to trick the computer at the other end of a connection into sending over data stored in its memory.
What steps should you be taking?
The Heartbleed bug makes it practically impossible to detect history of abuse, but to be on the safer side, we recommend that you change your passwords. Not just that, we suggest that you should also change your passwords at other 3rd Party Services such as Gmail, Facebook, etc.
If you have any questions or concerns, please contact our support team.
Live Sites Hosting