The Latest in IT Security

What is Heartbleed? A coding error that caused a security crisis

13
Sep
2017

code-1076533_960_720

Heartbleed is a vulnerability that came to light in April of 2014; it allowed attackers unprecedented access to sensitive information, and it was present on thousands of web servers, including those running major sites like Yahoo.

Heartbleed was caused by a flaw in OpenSSL, an open source code library that implemented the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. In short, a malicious user could easily trick a vulnerable web server into sending sensitive information, including usernames and passwords.

Related posts:
  1. New bugs found in software that caused ‘Heartbleed’ cyber threat
  2. ‘Trivial’ mistake that caused Heartbleed crisis highlights fragility of the web
  3. CrowdStrike Releases Heartbleed Scanner
  4. Android apps vulnerable to Heartbleed have been downloaded 150 million times
  5. Why is Heartbleed called Heartbleed?

Read More

Tags:  
Written by Csoonline
0 Comments

Leave a reply


Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments