Click to Skip Ad
Closing in...
  1. Best Amazon Deals Today
    07:58 Deals

    15 hidden Amazon deals that are so exclusive, they’re only for Prime members

  2. Best Kitchen Gadgets
    08:33 Deals

    Amazon shoppers are obsessed with this $23 gadget that should be in every kitchen

  3. Amazon Deals
    10:22 Deals

    Today’s best deals: Huge Prime members-only sale, $15 Echo Auto, $106 off Apple Watc…

  4. Prime Day Deals
    09:43 Deals

    These early Prime Day deals have prices so low, it’s like Amazon made a mistake

  5. How To Save Money On Your Cable Bill
    15:37 Deals

    Your cable company is furious that we’re telling you about this $59 box on Amazon

What to do about Heartbleed, the massive security bug that affects us all

Zach Epstein
April 9th, 2014 at 10:04 AM
What To Do About Heartbleed

Heartbleed is a scary, scary bug. Without getting into the technical aspects of this recently discovered security hole, it’s an issue with OpenSSL, the security protocol used to encrypt web traffic. How vast is this gaping security hole? According to experts, about 66% of the entire Internet is impacted by Heartbleed.

It sounds terrifying… and it is.

The Wire put together a great comprehensive post explaining what the vulnerability is and how it works, but the most important thing to know is what you should do about it. And unfortunately, for the time being, options are pretty limited and ineffective.

Because this bug exists on numerous hugely popular websites such as Yahoo, Tumblr, OKCupid and Flickr, millions of usernames and passwords may have been exposed as a result of the vulnerability. This also means that until all of these companies update their websites with a new version of OpenSSL that fixes the bug, users will continue to be at risk.

In the meantime though, there are some steps you can take.

First off, check out this GutHub page for a list of big websites that are or were vulnerable. If you have accounts on any of those sites, change your password immediately. If you use the same password on other sites, change those passwords immediately as well — preferably to something different (everyone should be using a solution like 1password at this point).

Then, sadly, all we can do is wait. Change your password frequently on sites that are known to be exposed until you confirm that they have updated OpenSSL.

For more, check out The Wire’s post, which is linked below in our source section.

Zach Epstein

Zach Epstein has worked in and around ICT for more than 15 years, first in marketing and business development with two private telcos, then as a writer and editor covering business news, consumer electronics and telecommunications. Zach’s work has been quoted by countless top news publications in the US and around the world. He was also recently named one of the world's top-10 “power mobile influencers” by Forbes, as well as one of Inc. Magazine's top-30 Internet of Things experts.

Popular News