A teen computer whiz charged with exploiting the infamous Heartbleed vulnerability to steal hundreds of social insurance numbers from the Canada Revenue Agency made a brief court appearance by proxy Thursday. Stephen Solis-Reyes, a computer science student at London, Ont.’s […] For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net…
Despite patching efforts, 300K servers are still vulnerable to Heartbleed
Despite a great start, the rate of patching OpenSSL servers against the critical Heartbleed vulnerability has slowed down to almost a halt. Around 300,000 servers remain vulnerable and many of them are unlikely to get patched anytime soon. View full post on Computerworld Cybercrime and Hacking News ________________ Other Sites…
Social Media Security Podcast 33 – Heartbleed, Hashtag Fail, Social Impersonation
Guess what? We’re back! This is the 33rd episode of the Social Media Security Podcast sponsored by SecureState. This episode was hosted by Tom Eston and Scott Wright recorded May 15, 2014. Below are the show notes, links to articles and news mentioned in the podcast: Social Media sites affected by Heartbleed NYPD Twitter hashtag…
Recovering from the Heartbleed? Hold on as FreeBSD has more for you!
The issue with the FreeBSD has appeared as its denial-of-service and data outflow in its TCP ordering. Many of the TCP packets are appearing as the out-of-order in its UNIX kind of operating system. Until packets are not re-assembled or re-ordered, they will remain in the reassemble queue. In an…
Covert Redirect, a heavier OAuth flaw then Heartbleed
Recently, a new vulnerability in OAuth has been reported. Security specialists have assessed this flaw after the Covert Redirect. It has been conflated with the Heartbleed vulnerability. It was a security breach that made the administrators go insane on fixing the mess caused at their websites. Wang Jing, a PhD…
The new malware Heartbleed into the servers
Affecting 2500 website administrators by the Heartbleed, this malware captured the servers within one month. This virus Heartbleed is affecting the OpenSSL, which allows the access to the sensitive private keys, password, and session cookies. This malware was mailed on the day it was come into view. Half a million…
For Solution to Heartbleed, PHP Updated
To protect PHP developers from bugs, the maintainers of PHP have released two new versions of the scripting language that fix a number of bugs, including the OpenSSL Heartbleed vulnerability. Versions 5.4.28 and 5.5.12 both contain that important patch, as well as fixes for more than a dozen other vulnerabilities….
Mandiant Researchers: Heartbleed Attack Bypasses Multifactor Authentication, Hijacks VPN Sessions.
According to the researchers at security firm Mandiant the attackers have developed a way to exploit heartbleed in an SSL VPN. The Heartbleed bug, as it’s now known, affects any sites and services running specific versions of OpenSSL. It is estimated that over 66% of the web uses OpenSSL, so…
Healthcare.gov users told to change passwords following Heartbleed flaw.
The Heartbleed Bug has uncovered the hidden bitter truth about tech companies and the Federal Government. The Heartbleed bug, just recently discovered by two researchers, left the door wide open to data attacks on vulnerable web servers. People who have accounts on the enrolment website for President Barack Obama’s signature healthcare law…
Obamacare enrollees urged to change passwords over Heartbleed bug
The President Barack Obama’s health insurance enrollment website, HealthCare.gov launch last fall was dogged by complaints that many users could not access the site to buy insurance or research healthcare plan options. Most of the website’s most prominent flaws were eventually remedied. And this time Heartbleed bug is the pain…