Read our newly released 2020 salary survey

Advice, news, debate
and discussion
all in one place

Heart a’Hack

Around two-thirds of websites are vulnerable to ‘heartbleed hackers’

stealing data

The Heartbleed bug came to fore three days ago, discovered April 7, and is wreaking havoc for many companies having gone undetected for the past 2 years. Here’s a simple breakdown of what the bug is and what this actually means for us…

Heartbleed is a security bug that potentially allows for the theft of data typically protected by OpenSSL (the open source implementation of the SSL/TLS encryption software most websites use, including many popular banking and retail sites).  OpenSSL is a popular cryptographic library used to digitally scramble sensitive data as it passes to and from computer servers so that only the service provider and the intended recipients can make sense of it.  Affecting around 67% of websites this flaw lets hackers digitally unscramble information and eavesdrop on communications between servers and steal data as they wish without leaving a trace.

The implications are enormous! It is hard to predict the actual impact it will have though we know it will be huge. The exploitation of this bug leaves no trace of any abnormal happenings to the logs and can go undetected; essentially we might never know what data has been compromised and what information has been stolen which is quite a sobering reality.

Looks like it’s going to be a long week for IT Professionals who need to, update servers and patch up vulnerabilities to prevent the leak of any more secure data.

Read more: http://heartbleed.com/

https://www.linkedin.com/today/post/article/20140409194858-2259773-heartbleed-a-data-security-bug-of-titantic-proportions-that-affects-most-of-the-internet-and-that-will-have-enormous-implications?trk=tod-home-art-list-small_1

http://www.techradar.com/news/internet/web/google-slaps-heartbleed-tourniquet-on-most-key-services-1241211?src=rss&attr=all

http://www.bbc.co.uk/news/technology-26954540

http://www.theguardian.com/technology/2014/apr/09/heartbleed-dont-rush-to-update-passwords-security-experts-warn

http://www.dailymail.co.uk/sciencete  ch/article-2600701/Are-YOUR-details-risk-heartbleed-hackers.html#ixzz2yTSZBNoE

Share this… @zebrapeople

Leave a reply

Leave a Reply

Latest views

The demand for UX Designers is still booming as ever, however it was interesting to see how the uncertainty of both IR35 and Brexit has had to play in the market.

If you’re looking to join the growing number of UX’ers taking the (exciting/scary) leap from perm into freelance/contracting – but without fully knowing what to expect – I’ve put together some info to help you on your way!

Recruiters asking about your current salary… so invasive right? It’s such a personal thing to ask. And who wants to be potentially judged at how good or successful they are by what they earn?! Let alone tell it to someone you don’t even know.

The prospect of doing a take-home task can be daunting for many, so I’ve put together some tips and advice to help you prep…

Identifying the key challenges faced by startups when hiring for their development teams.

That’s right, I said hiring. Not getting hired. I know, I know – another ‘click bait’ title for you. But, it’s another serious topic. Far too often I hear of companies struggling to hire because candidates are not making it as far as offer stage before withdrawing from the process, or candidates’ feedback to me […]

You may think this is fairly obvious, but you’ll be surprised at the amount of times somebody has gone to meet a company and knows next to nothing about them.

Zebra People has today announced it has joined forces with leading UK executive search and interim firm HW Global Talent Partner. HW Global has taken a controlling interest in the privately-owned London-based firm, launched in 2001 by Nick Cochrane. Zebra People specialises in hiring digital product teams, with typical roles including user experience (UX) and […]