'Heartbleed' Bug Exposes Passwords, Web Site Encryption Keys - Krebs on Security - 1 views
-
Roland Gesthuizen on 10 Apr 14"Researchers have uncovered an extremely critical vulnerability in recent versions of OpenSSL, a technology that allows millions of Web sites to encrypt communications with visitors. Complicating matters further is the release of a simple exploit that can be used to steal usernames and passwords from vulnerable sites, as well as private keys that sites use to encrypt and decrypt sensitive data. "