Heartbleed Bug has Experts in a panic

Wednesday, April 16, 2014
Heartbleed bug may put your data at risk. Contact TechnoMinds to test your computer.

Do you trust your online banking? Most of us have grown to accept that there is a level of internet security we can trust.


UPDATE: See related article about arrested Canadian teenage Heartbleed hacker.

browser SSL indicators
Click image to enlarge

Whether you know it or not, your browser gives you little visual indicators when you are securely connected to a server. They tell you that there is a hghly respected and trusted connection to the server that uses a nearly unbreakable encryption... blah blah blah. You can trust it. So we are led to believe. Up until 2 weeks ago, that trust was well founded. However, recently a security bug called Heartbleed was discovered. It is not a virus or malware. It is mistake made in the writing of the code for OpenSSL which is used to implement the Internet's Transport Layer Security (TSL).

What does this mean to the average user?

All of the websites you trusted as safe, may not have been. There is a possibility that your encrypted connections were compromised. We say possibility because it only means that the connection was vulerable, not that it was hacked.

Don't panic, but you should take this seriously. 


What should you do?

There seems to be two schools of thought. 1. Change all of you passwords now. 2. Wait until the website server has been updated with the fix for this bug and then change your password. We advise that you check all of your sites to see if they are or were vulnerable. If you do a Google search, you will find many sites that will test an address for you. Macafee is one.

Click image to enlarge. 

If you find that one of your websites is vulnerable, do not use that site until it is fixed. Once a site is fixed or if it doesn't show up as vulerable, then change your password.

If you feel that you would like a professional to help you, please do not hesitate to contact TechnoMinds. We would be more than happy to test your sites for you and help change your passwords. 

For further reading: Wikipedia