See If Sites You Use Are Vulnerable to Heartbleed


A flaw in the most popular web encryption system could leave people vulnerable to data theft according to security researchers. That little padlock in the lower right corner of a browser window or the letters “https” in the address bar are supposed to mean that the site is encrypted but the most popular method, called OpenSSL has had a hole for at least two years.

The Heartbleed bug “allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software,” according to Codenomicon’s Heartbleed.com site, which added, “This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.”

Test sites you visit

These tests aren’t  100% definitive. It are an indicator of whether the site you’re using is currently vulnerable, but it doesn’t indicate whether it may have been affected in the past. So even if the site you enter comes up clear there is no guarantee that it wasn’t vulnerable earlier. Still, it’s worth checking the Lastpass Heartbleed checker, the Filippo Valsorda’s report and  the Qualys SSL Labs report. CNET has posted a list on the Heartbleed status for top 100 sites.

Is it time to change passwords?

Some experts are advising people to change their passwords right away but others suggest that it’s better to wait until you know your site is clear, lest you simply give hackers access to the new password.

 

As published on http://www.forbes.com/sites/larrymagid/2014/04/09/test-for-heartbleed-vulnerability-and-advice-on-changing-passwords/

About Shailendra Nair

I am full-time IT professional, with excellent exposure in Information technology management, mission critical business application & development, Information security & advisory practice . I have been in the field for little over 13 + years have significant achievement and set new trends in the field & Industry. Grandson of late Indian freedom fighter from Kerala, I am photographer , blogger, guitarist by hobby , adamant NOT arrogant, travel & foodie at heart, globe trotting road warrior , multidimensional thinker & dreamer.
This entry was posted in Technology and tagged , , . Bookmark the permalink.

Kindly leave your feedback or suggestions

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s