Thursday, April 10, 2014

BBC News - Heartbleed Bug: Public urged to reset all passwords

Several tech firms are urging people to change all their passwords after the discovery of a major security flaw. 

 "On the scale of one to 10, this is an 11” -Bruce Schneier Security technologist 

 The Yahoo blogging platform Tumblr has advised the public to "change your passwords everywhere - especially your high-security services like email, file storage and banking". 

 Security advisers have given similar warnings about the Heartbleed Bug. It follows news that a product used to safeguard data could be compromised to allow eavesdropping. 

 OpenSSL is a popular cryptographic library used to digitally scramble sensitive data as it passes to and from computer servers so that only the service provider and the intended recipients can make sense of it.  

If an organisation employs OpenSSL, users see a padlock icon in their web browser - although this can also be triggered by rival products.

Security Now 450

How the Heart bleeds
The end of updates for Windows XP, AnyDVD, the Heart Bleed Bug, and more.
View or listen to Security Now 450

Security Now 451

TrueCrypt & Heartbleeds Part2
The previous week consisted of nearly a single story: Heartbleed. It was only "nearly", though, because we also received the results from the first phase of the TrueCrypt audit.
View or listen to Security Now 451

No comments: