Advice, news, debate
and discussion
all in one place

Heart a’Hack

Around two-thirds of websites are vulnerable to ‘heartbleed hackers’

stealing data

The Heartbleed bug came to fore three days ago, discovered April 7, and is wreaking havoc for many companies having gone undetected for the past 2 years. Here’s a simple breakdown of what the bug is and what this actually means for us…

Heartbleed is a security bug that potentially allows for the theft of data typically protected by OpenSSL (the open source implementation of the SSL/TLS encryption software most websites use, including many popular banking and retail sites).  OpenSSL is a popular cryptographic library used to digitally scramble sensitive data as it passes to and from computer servers so that only the service provider and the intended recipients can make sense of it.  Affecting around 67% of websites this flaw lets hackers digitally unscramble information and eavesdrop on communications between servers and steal data as they wish without leaving a trace.

The implications are enormous! It is hard to predict the actual impact it will have though we know it will be huge. The exploitation of this bug leaves no trace of any abnormal happenings to the logs and can go undetected; essentially we might never know what data has been compromised and what information has been stolen which is quite a sobering reality.

Looks like it’s going to be a long week for IT Professionals who need to, update servers and patch up vulnerabilities to prevent the leak of any more secure data.

Read more: http://heartbleed.com/

https://www.linkedin.com/today/post/article/20140409194858-2259773-heartbleed-a-data-security-bug-of-titantic-proportions-that-affects-most-of-the-internet-and-that-will-have-enormous-implications?trk=tod-home-art-list-small_1

http://www.techradar.com/news/internet/web/google-slaps-heartbleed-tourniquet-on-most-key-services-1241211?src=rss&attr=all

http://www.bbc.co.uk/news/technology-26954540

http://www.theguardian.com/technology/2014/apr/09/heartbleed-dont-rush-to-update-passwords-security-experts-warn

http://www.dailymail.co.uk/sciencete  ch/article-2600701/Are-YOUR-details-risk-heartbleed-hackers.html#ixzz2yTSZBNoE

Share this… @zebrapeople

Leave a reply

Leave a Reply

Latest views

Identifying the key challenges faced by startups when hiring for their development teams.

That’s right, I said hiring. Not getting hired. I know, I know – another ‘click bait’ title for you. But, it’s another serious topic. Far too often I hear of companies struggling to hire because candidates are not making it as far as offer stage before withdrawing from the process, or candidates’ feedback to me […]

You may think this is fairly obvious, but you’ll be surprised at the amount of times somebody has gone to meet a company and knows next to nothing about them.

Zebra People has today announced it has joined forces with leading UK executive search and interim firm HW Global Talent Partner. HW Global has taken a controlling interest in the privately-owned London-based firm, launched in 2001 by Nick Cochrane. Zebra People specialises in hiring digital product teams, with typical roles including user experience (UX) and […]

1. Check your employment contract Before you resign, take note of your notice period and any obligations you might have. Make sure you are aware of what’s in your contract when it comes to notice period / gardening leave. 2. Note down your reasons for leaving before resigning This will help you to be clear […]

Things to avoid on your CV We’ve all been there. Totally over your current role. Decide to look for a new job. Start by putting your LinkedIn profile to ‘open to new opportunities’. Start scrolling through then think to yourself, ‘Oh, that one looks good. I could do that’ Click apply. Leads you to a […]

As recruiters we speak to hiring managers all the time helping them to make crucial hires. Sometimes, we’re talking to hiring managers who are starting completely from scratch in an environment that doesn’t understand what UX even means. So where do you start? That’s not an easy question to answer and even more difficult to […]

Having been in recruitment for over 10 years now and over 7 years specifically recruiting for the User Experience sector, I’ve learnt some fairly frank points I’d like to share. The below doesn’t cater for every single scenario and there are plenty more points that could be made, but for the sake of not turning […]