Heartbleed exploit, patch, both released

http://s2.djyimg.com/n3/eet-content/uploads/2014/04/heartbleed1-676x450.jpg

As the Heartbleed fallout continues, the good news is that code to fix the problem in OpenSSL has been released. The bad news is that exploit code is also available.

Let’s start with the latter, released by a chap who took up Cloudlare’s challenge to coders in the hope someone, somewhere, would be able to use Heartbleed to extract a private SSL key from an undefended server it erected.

Tags:

Security

SSL

Story added 14. April 2014, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

5 Facebook facepalms (just last week)
A clear-eyed look at APT
Hackers Take Hijacked Jeep Cherokee for Joyride
Ivanti CEO Vows Cybersecurity Makeover After Zero-Day Blitz
New Flash Player 0-day (CVE-2014-0515) used in watering-hole attacks
Penn State Beaver Voice Services Migration
Microsoft Office Web Apps Server CVE-2015-6037 Spoofing Vulnerability
Android Apps Target Bitcoin, By-Passing 2FA
ZDI Announces Rules and Prizes for Pwn2Own 2022
Apple demands ipad3.com domain

Heartbleed exploit, patch, both released

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts