Tag Archives: Heartbleed

Tech giants throw money at OpenSSL in response to Heartbleed

heartbleed primary
OpenSSL is getting funded for two full-time developers and a security audit in an attempt to prevent another devastating bug like Heartbleed.

The money is coming from the Core Infrastructure Initiative (CII), a group of tech companies that came together last month in response to Heartbleed. At the time, CII said that each company would contribute at least $100,000 per year to crucial open-source projects over at least a three-year span, but the group didn’t say how it would distribute the funds.

HealthCare.gov requires users to change their passwords (Heartbleed)

heartbleed primary
If you have an account with HealthCare.gov, you can expect to change your password the next time you log in. And you can thank Heartbleed for it.

Teen arrested for Heartbleed attack against Canadian tax site

heartbleed 100260998 orig
Canadian police have arrested a 19-year-old man for allegedly using the Heartbleed bug to steal data about taxpayers.

Stephen Arthuro Solis-Reyes, of London, Ontario, took advantage of the vulnerability to steal information from the Canada Revenue Agency’s website, according to the National Division of the Royal Canadian Mounted Police. They arrested him on Tuesday without incident. Solis-Reyes faces one count of unauthorized use of a computer and one count of “mischief in relation to data.”

Rushed Heartbleed fixes may expose users to new attacks

In the race to protect themselves from the Heartbleed vulnerability, enterprises could be opening themselves up to new attacks if they aren’t careful.