Heartbleed Bug – Top 5 Things You Must Know Before Giving Out Your Personal Information to a Website

The newly discovered Heartbleed bug is being considered as a serious issue as it puts personal information of the user at risk. The bug was discovered nearly a week ago and there is lots of confusion among the users regarding its implications. We have compiled some information in order to help users protect their personal information, and we will keep on updating our posts once we receive any new information or update about the security bug.valentine's day gifts him her

1.Heartbleed can be easily understood by knowing that it is security vulnerability in OpenSSL software that enables hackers to access the memory of your data servers. The bug has already affected more than 50,000 Web sites, according to an Internet research firm Netcraft. The bug puts your usernames, passwords and credit card information at high risk of being intercepted.

2.OpenSSL is open-source software for SSL implementation across the entire Web. The 1.0.1 through 1.0.1f versions have vulnerability. OpenSSL is also used as part of the Linux operating system as well as a component of Apache and Nginx, which are the widely used programs for running Web sites.

3.Ossi Herrala, a systems administrator at Codenomicon, coined the term “Heartbleed”. It’s got a nicer ring to it than its technical name, CVE-2014-0160, named for the line of code that contained the bug.

4.The security bug has been independently found by security firm Codenomicon and Google researcher Neel Mehta, but on the same day. Mehta received a county of USD15,000 which he donated to the Freedom of the Press Foundation. Google has been quoted saying that “The security of our users’ information is a top priority. We proactively look for vulnerabilities and encourage others to report them precisely so that we are able to fix them before they are exploited.”

5.It is highly suggested that avoid using your accounts from the afflicted sites unless you are pretty sure that the company has fixed the problem. You need to be careful even if the site gives you an “all clear” indication. Majority of users would change their password immediately, but experts suggest that you should wait until the problem is fixed because further activity on a vulnerable site could increase the problem.

Also Read:

Steps To Protect Your Private Date Usernames, Passwords and Credit Card Numbers Against Heartbleed Bug

 

 

 … Read the rest

Read more

Steps To Protect Your Private Date Usernames, Passwords and Credit Card Numbers Against Heartbleed Bug

A new security bug dubbed Heartbleed has been recently discovered, leading to several major implications for the entire Web. This bug has the capability to cause major harms by scraping a server’s memory, where important data is being stored, including private data such as usernames, passwords and credit card numbers.

This is turning into a serious issue because the Heartbleed bug has already affected nearly 500,000 websites, according to an Internet research firm Netcraft. We bring to you a list of measures you can adopt in order to protect your information.

Avoid logging into accounts from afflicted sites: Do not log into accounts from afflicted sites unless you are pretty sure that the company has fixed the problem. The company may not confirm a fix and update you regularly, so you have to call their customer service teams for updated information. Several sites are still infected, but they are saying that their sites are all or partly fixed. You need to be careful even if the site gives you an “all clear” indication. Majority of users would change their password immediately, but experts suggest that you should wait until the problem is fixed because further activity on a vulnerable site could increase the problem.

Change passwords after the problem is fixed: The first thing you should do when the problem is fixed is change passwords of your sensitive accounts, including banks and email. The change of password is recommended even when you have activated the two-factor authentication.

Check with small businesses using your data to ensure security: Check the security of your data even with small businesses in order to ensure that it is safe. There is a high possibility that the small companies might not even be aware of the new security bug, so act proactive in order to avoid any loss of data.

Carefully check financial statements for the next few days: Check your financial statements carefully for the next few days as there is a possibility that attackers might have accessed a server’s memory for your credit card information. It will take no time to lookout for unfamiliar charges on your bank statements.

These guidelines do not ensure full protection but can definitely reduce risk to a large extent.… Read the rest

Read more