Click to Skip Ad
Closing in...

Apple: iOS, OS X and ‘key web services’ aren’t heartbleeding

Published Apr 11th, 2014 6:30AM EDT
BGR

If you buy through a BGR link, we may earn an affiliate commission, helping support our expert product labs.

Following the revelation that hundreds of thousands of websites are susceptible to attacks based on the “Heartbleed” flaw in OpenSSL, Apple told Re/code that its operating systems including iOS and OS X, as well as unnamed “key” web-based services are not affected by the hack.

“Apple takes security very seriously. IOS and OS X never incorporated the vulnerable software and key Web-based services were not affected,” an Apple spokesperson told the publication.

While Apple would not say what those key web services are, 9to5Mac says it tested apple.com and various iTunes servers that host Apple’s online stores using an online tool that checks for Heartbleed and all of them are secure. The publication added that users who rely on a server powered by OS X 10.8 or 10.9 to run a web service are also secure.

Heartbleed allows hackers aware of the issue to fish for user passwords on the sites affected by the security flaw. Changing the password will not fix the problem as long as the company doesn’t patch up the issue. This Chrome plugin should help you check out what sites are vulnerable to Heartbleed at the moment, with more and more companies securing their online services.

Chris Smith Senior Writer

Chris Smith has been covering consumer electronics ever since the iPhone revolutionized the industry in 2008. When he’s not writing about the most recent tech news for BGR, he brings his entertainment expertise to Marvel’s Cinematic Universe and other blockbuster franchises.

Outside of work, you’ll catch him streaming almost every new movie and TV show release as soon as it's available.