When the knowledge of Heartbleed became public two months ago, the Internet went into a password-changing, server-adjusting tailspin. The vulnerability hit about 600,000 systems initially. In the first month, about half of these were patched, bringing it down to around 300,000 vulnerable servers.