NSA Heartbleed Security Flaw

The NSA has its own suggestions for dealing with Heartbleed

By on April 15, 2014 at 11:20 AM.

The NSA has its own suggestions for dealing with Heartbleed

The National Security Agency has already denied reports that claimed it had been aware of the Heartbleed security threat and used it in its advantage, and now the agency has issued its own document, picked up by Engadget, advising users on how to deal with this major security risk that has been found to affect a large number of websites. More →

No Comments
Heartbleed Checker Passwords

Here are all the passwords you need to change right now because of Heartbleed

By on April 15, 2014 at 10:00 AM.

Here are all the passwords you need to change right now because of Heartbleed

By now, we all know what a huge deal Heartbleed is. The massive vulnerability in OpenSSL protocol impacted 66% of all sites on the Internet at the time of its discovery, and now companies are scrambling to fix the issue. Most big companies seem to have done a pretty good job of acting quickly, but this bug is several years old so users have been at risk for quite some time regardless of how quickly a site might have patched the flaw. As such, the cybersecurity experts at LWG Consulting have compiled a great list of all the huge sites that were impacted by Heartbleed. More →

No Comments
Galaxy S5 Fingerprint Scanner Hack

Galaxy S5′s fingerprint scanner has already been hacked, PayPal accounts at risk

By on April 15, 2014 at 9:41 AM.

Galaxy S5′s fingerprint scanner has already been hacked, PayPal accounts at risk

When it comes to Samsung’s fingerprint scanner technology embedded in the home button on the new Galaxy S5, there’s good news and bad news. The good news is that we have spent plenty of time testing it, and we’ve found that it works very well. The bad news, however, is that it has apparently already been hacked, leaving Galaxy S5 owners’ devices and their PayPal accounts at risk. More →

No Comments
BlackBerry BBM Heartbleed Patch

Not even BlackBerry can escape the Heartbleed bug

By on April 14, 2014 at 9:45 PM.

Not even BlackBerry can escape the Heartbleed bug

Here’s how you know that Heartbleed is a serious and widespread problem: Even BlackBerry is scrambling to push out patches for it. Although BlackBerry prides itself with being the world’s leader in mobile security, Reuters reports that it was caught flat-footed by the Heartbleed bug just like everyone else and is now planning “to release security updates for messaging software for Android and iOS devices by Friday to address vulnerabilities in programs” exposed by the massive new security flaw.

More →

No Comments
How To Use 2-step Verification

Here’s how to protect yourself with two-step verification on 11 top websites

By on April 14, 2014 at 12:59 PM.

Here’s how to protect yourself with two-step verification on 11 top websites

Heartbleed is a very scary bug that came to light recently and once again sent the Internet into a frenzy with talk about how to protect yourself from security vulnerabilities and hackers. Several sites also published guides covering how to protect yourself from Heartbleed, suggesting that using stronger passwords could somehow have kept users safe from having their data compromised by Heartbleed. Using complex passwords is always a good idea, but even the longest password would have been vulnerable in the case of this particular flaw. What would have offered users solid protection, however, is two-step verification. More →

No Comments
How To Use Windows XP After Support Ends

How to safely run Windows XP in the post-XPocalyptic world

By on April 11, 2014 at 8:30 PM.

How to safely run Windows XP in the post-XPocalyptic world

A lot of people are having trouble saying goodbye to Windows XP even after Microsoft has cut off support for the ancient operating system. Earlier this week we gave XP fans some tips for how to keep Windows XP around even if they upgrade to Windows 8, but what about those XP diehards who just flat-out refuse to upgrade to a new OS? For those hardy souls, The Guardian has put together a handy guide for XP stragglers who still can’t let go but who also don’t want to be open to the barrage of malware that will now run completely rampant on their machines without Microsoft’s support. More →

No Comments
How To Test For Heartbleed On My Android Phone

This free Android app could save your phone from the Heartbleed bug

By on April 11, 2014 at 4:04 PM.

This free Android app could save your phone from the Heartbleed bug

The NSA has apparently known about Heartbleed for years, but the general public was only made aware of the devastating bug a few days ago. Many of us are at a loss for what to do, but smartphone security firm Lookout is living up to its name with a free app that will allow you to check and see if your Android device is vulnerable. Lookout’s Heartbleed Detector app determines which of OpenSSL is running and then tells users whether or not their phones could have been affected by Heartbleed. More →

No Comments
NSA Heartbleed

NSA reportedly exploited Heartbleed for years, leaving us all at risk

By on April 11, 2014 at 3:13 PM.

NSA reportedly exploited Heartbleed for years, leaving us all at risk

The odds are good that no one will be surprised to learn that the National Security Agency knew about the Heartbleed OpenSSL vulnerability that affected 66% of the entire Internet at the time of its discovery. The allegation that the NSA used the security hole itself to spy on targets might not be terribly shocking either. What is pretty surprising — and appalling — however, is the fact that Bloomberg is reporting the NSA knew about the huge vulnerability for “at least two years” and did nothing, leaving us all at risk. More →

No Comments
How to Create Strong Passwords

This guide will teach you how to create stronger passwords

By on April 11, 2014 at 2:10 PM.

This guide will teach you how to create stronger passwords

The Heartbleed software bug caught the web by storm, affecting a huge number of websites and online services that are now hurrying to patch the security bug. Internet users have little they can do right now, aside from checking whether the websites they access on a regular basis are affected in any way – especially those sites where they have user accounts – and then changing their passwords for those sites once they have been patched. Changing a password now would not have any effect on a site that’s still vulnerable to Heartbleed, as hackers would still be able to access passwords no matter how complex they’d be.

With that said, however, people looking to set up stronger passwords than “password” or “123456” in the future should check out this handy infographic from WebpageFX, which can help them come up with better passwords. More →

No Comments
Heartbleed Explanation

Why is Heartbleed called Heartbleed?

By on April 11, 2014 at 1:00 PM.

Why is Heartbleed called Heartbleed?

After a week of unescapable coverage on tech blogs and news sites, it’s probably safe to say most of us now know what Heartbleed is. The positively terrifying OpenSSL vulnerability affected an estimated 66% of the entire Internet at the time of its discovery, and passwords for many big sites including Yahoo, Flickr and thousands more were at risk. Sure, we all know what Heartbleed is, and now, thanks to a simple browser plugin, we know how to avoid websites affected by Heartbleed. What most people don’t know, however, is how Heartbleed got its name. More →

No Comments
Hearbleed Online Security Checks

Trying to protect yourself from Heartbleed could land you in jail

By on April 11, 2014 at 11:09 AM.

Trying to protect yourself from Heartbleed could land you in jail

The recently uncovered massive Heartbleed vulnerability affecting 66% of websites is currently being patched by many companies, but several online services already offer users the means to test whether a website is still affected by the Heartbleed vulnerability. However, checking to see whether a site uses flawed OpenSSL protocol is actually in violation of Internet laws and could land users in jail, at least theoretically, The Register reports. More →

No Comments
Heartbleed iOS, OS X and Apple

Apple: iOS, OS X and ‘key web services’ aren’t heartbleeding

By on April 11, 2014 at 6:30 AM.

Apple: iOS, OS X and ‘key web services’ aren’t heartbleeding

Following the revelation that hundreds of thousands of websites are susceptible to attacks based on the “Heartbleed” flaw in OpenSSL, Apple told Re/code that its operating systems including iOS and OS X, as well as unnamed “key” web-based services are not affected by the hack. More →

No Comments