Skip to main content

Filed under:


Heartbleed: the bug that put the internet on high alert

14 updates since Apr 8, 2014, 5:53 PM UTC
RSSFollow this stream

In the spring of 2014, the internet was rocked by what security researchers are calling a "catastrophically bad" bug. Known by the dramatic name Heartbleed, the bug left the widely-used, open source OpenSSL protocol vulnerable to attacks that could put servers' private encryption keys into the hands of hackers. Major sites like Yahoo, Imgur, Flickr, LastPass, and countless others were left vulnerable, and, worst of all, the bug's been in the code for years. In the immediate aftermath, admins are scrambling to protect their sites while more details on the bug come out, and the whole affair raises questions about the fragile state of security on the web. We'll be tracking all that news and more right here.