Peritech's-Blog

Heartbleed Bug Breaks Worldwide Internet Security

- Tuesday, April 15, 2014
A new bug puts trust on the Internet at risk on a significant scale. The bug, dubbed ‘Heartbleed’, is based on a fault in functionality in the widely used OpenSSL library. This library is extremely widely used from security vendors products to secure web browsing and even mobile banking applications. So what exactly does this bug do and why should you care?

When the bug is exploited, the attacker can retrieve memory (up to 64kb) from the remote system. This memory may contain usernames, passwords, keys, or other useful information that enables bigger attacks. There are all kinds of variations that might be possible based on the ability to read this memory. 64kb may not seem like a great deal of data, but of course the attacker can connect repeatedly and progressively collect more information. This is a serious problem. It is very difficult, if not impossible, to retrospectively identify if someone attacked your systems so it is better to play it safe. You should assume that your system has been compromised, and re-set your credentials as soon as possible. There are some services which allow you to check if a service is patched but in some cases, such as with mobile app implementations, it is not simple.

What should you do to protect your services?
1.  Check whether your website, apps, or any other product uses Open SSL and whether they are vulnerable to the attack.
2.  There is a neat site at http://filippo.io/Heartbleed/ where you can quickly run the check. Regenerate any private keys that your site uses once you have patched.
3.  Update Open SSL to the latest version, which fixes the defect. This is not an automatic process in many cases.
4.  Check the state of the your SSL configuration for your website and mail services.
5.  Call perITech Solutions to assist 502-882-5555 (local) or 855-202-8012 (toll free)


Comments
find more commented on 27-Apr-2014 12:45 PM
You have remarked very interesting details ! ps decent site. "I'm going to a special place when I die, but I want to make sure my life is special while I'm here." by Payne Stewart.
view commented on 02-May-2014 11:29 AM
Some truly good posts on this site, thankyou for contribution.
Juegos Flash y java Gratis commented on 19-Aug-2014 08:01 PM
¿Que tal? Serias tan amable de hacerme saber que el webhost que estas llevando?
He cargado tu blog en 3 navegadores radicalmente distintos y no puedo añadir
otra cosa que este web blog carga velozmente en el conjunto de ellos.

¿Puedes recomendar un buen aprovisionador de compañia de hosting a un importe sensato?
Lo apreciaria mucho!
Oswaldo Hoskie commented on 04-Sep-2016 11:29 PM
My first experience with my Credit Union was in 2008. At the time, I was working over 30 miles away from my home, and need cash bad. I call them and they were able to wire funds immediately to a local place. The customer service was awesome.
https://logicmn.com commented on 21-Nov-2018 11:47 PM
I'm gone to inform my little brother, that he should also
go to see this blog on regular basis to take updated from hottest gossip.
Adella Speidel commented on 16-Oct-2019 01:39 PM
21 f with nudes add me on snapchat LanaShows

Post a Comment




Captcha Image

Trackback Link
http://www.peritechinc.com/BlogRetrieve.aspx?BlogID=12519&PostID=465527&A=Trackback
Trackbacks
Post has no trackbacks.