heartbleed

Update Apr 14: Heartbleed OpenSSL Vulnerability

Significant OpenSSL Vulnerability (CVE-2014-0160) with PoC the wild. While only a CVSS 5, due to its memory grabbing ability, this is a CODE UPGRADE-NOW. This is OpenSSL vulnerability is testable…

Read More
Bloomberg: NSA Said to Exploit Heartbleed Bug for Intelligence

The U.S. National Security Agency knew (about Heartbleed) for at least two years via Michael Riley @ Bloomberg The U.S. National Security Agency knew for at least two years…

Read More
XKCD: How the Heartbleed bug works

Munroe, Randall. "xkcd: Heartbleed Explanation." xkcd: Heartbleed Explanation. http://xkcd.com/1354/ (accessed April 11, 2014).…

Read More

Action and Adventure on the High Seas of Information Security