A new security hole has emerged online called the Heartbleed Bug, which affects the OpenSSL cryptographic library, and, as ZD Net reports, it’s “an especially bad one.” The bug involves the OpenSSL’s 1.0.1 and the 1.0.2-beta release, but Secure Socket Layer (SSL) and Transport Layer Security are major components of Internet security. According to the report, the bug can potentially expose contents of secure messages—including credit card information over HTTPS connections, but also primary and secondary SSL keys, which could be used to bypass secure servers. In a blog post, TorProject wrote, “If you need strong anonymity or privacy on the Internet, you might want to stay away from the Internet entirely for the next few days while things settle.”
Full Story


If you want to comment on this post, you need to login