Well, the proverbial cat’s out of the bag and everyone knows about the vulnerability called ‘Heartbleed’.
If you don’t know what Heartbleed is or what it really means to you, I’ll briefly sum it up: Heartbleed is a vulnerability found in the technology that secures websites and tons of other communication technologies. This vulnerability allows people to snoop the memory on the web server running the website you visit. Ideally, the interested person could see passwords, user information, session information, etc. OpenSSL, the specific cryptographic software that is vulnerable, is used on about 2/3 of the Internet! The news has reported that banking sites, webmail, and practically anything with an https:// at the beginning of the web address (that’s what the little padlock in front of the address means) has been vulnerable for the last 2 years. The recommended action is to change your passwords!
So, over the past few days I’ve been asked by relatives and friends whether their banking, webmail, or a site they frequent is now secure. To help the everyone find out about if Heartbleed still affects the sites you visit, we’ve created a simple website for everyone to use to find out.
Simply type in the web address that you’re curious about. For instance, www.bankofamerica.com. The site will reply and let you know the results!
It can be found here, at: http://heartbleed.kernelops.com.