Click to Skip Ad
Closing in...

Life after Heartbleed: ‘The Internet will never be 100% safe’

Published Apr 23rd, 2014 1:00PM EDT
Heartbleed Bug Fix

If you buy through a BGR link, we may earn an affiliate commission, helping support our expert product labs.

Heartbleed was an abrupt but necessary reminder that when it comes to the Internet, nothing is safe. The massive OpenSSL security hole was discovered earlier this month, and it affected 66% of the entire Internet at the time of its discovery. Most large websites have patched the bug by now and Heartbleed chatter across the Web is inevitably starting to die down. But as one security expert recently pointed out, patching Heartbleed hardly makes the Internet safe again.

“In the wake of the HeartBleed vulnerability, many organizations and hosting providers have lulled themselves into a false sense of security by relying on Intrusion Detection Systems (IDS) to automatically deal with HeartBleed attacks,” Halon Security CEO Jonas Falck said recently. “IDS systems were designed to sniff out vulnerabilities, but closed source development teams take too long to respond and patch issues like HeartBleed.”

He continued, “The Open Source community has received a bad rap for the OpenSSL exposure, but the community has rallied together to patch the issue quickly. If anything, the HeartBleed issue has shown how reliant the Internet as a whole is on Open Source, so if corporations can give back to the Open Source community after taking advantage of OpenSSL or so long, there will be more eye balls spotting vulnerabilities earlier in the future.”

According to Falck, “the Internet will never be 100% safe” from hackers and vulnerabilities like Heartbleed. With the right strategies, however, security companies can take steps to protect businesses and consumers more thoroughly.

“Nothing is completely safe on the Internet, and similar to driving a car, we all take a calculated risk by participating,” said Falck. “The Internet was built for communication, and not built with security in mind. Like all walks of life there will be some hiccups, and the HeartBleed issue was certainly a major hiccup for the Open Source community. However, security vendors need to investment more in quality solutions and constant innovation in order to stay ahead of malicious hackers, and spend less time on marketing.”

Zach Epstein
Zach Epstein Executive Editor

Zach Epstein has been the Executive Editor at BGR for more than 10 years. He manages BGR’s editorial team and ensures that best practices are adhered to. He also oversees the Ecommerce team and directs the daily flow of all content. Zach first joined BGR in 2007 as a Staff Writer covering business, technology, and entertainment.

His work has been quoted by countless top news organizations, and he was recently named one of the world's top 10 “power mobile influencers” by Forbes. Prior to BGR, Zach worked as an executive in marketing and business development with two private telcos.