• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar

Ambition IAS

Online IAS Coaching, Preparation, Test Series & Current Affairs

  • KPSC Material
    • General FAQ
    • Books List
      • KAS Prelims Books List
      • KAS Mains Kannada Book List
      • KAS Mains English Book List
    • Free Downloads
      • KAS Prelims Preparation Time table
      • Karnataka Economic Survey (2013-14)
      • Karnataka Economic Survey (2014-15)
      • Previous Question Papers
    • Buy KPSC Prelims Material
      • Buy KAS Prelims Study Material
    • KPSC Mains Study Material
      • KPSC Mains Study Material
  • Mock Tests
    • Prelims Mock Test
      • Free Mock Tests
      • Paid Test Series
    • Mains Mock Test
      • Daily Free Questions (Updated on WhatsApp Group)
      • Paid Test Series
  • Join WhatsApp Group
  • KPSC Mains Test Series
  • UPSC 2015 Prelims MCQs
  • Doubts Corner
  • Contact Us

Heartbleed Puts at Risk Critical Security Data

April 12, 2014 by Admin Leave a Comment

  • Heartbleed, a 2yr old security bug in OpenSSL protocols used by over 70% websites allows ‘bleeding’ of critical information such as private encryption keys, passwords of users, credit card details that users provide during e-commerce transaction and even use chat logs for snooping.
  • OpenSSL is a security protocol built using SSL/TLS encryption. Banks’ and other websites (which have https or a small green lock ahead of its name) use this to safely transfer your details to the website server.
  • Leaked (private) secret keys allow the attacker to decrypt any past and future traffic to the protected services and to impersonate the service (like a social networking website or an email service) at will. Considering the long exposure, ease of exploitation and attacks leaving no trace this exposure should be taken seriously
  • Google and Facebook, which run their own security protocols, are safe while Yahoo and millions of other websites are affected. Although many of these have patched and updated their websites, the nature of the bug makes internet presently extremely vulnerable.
  • Any website that you use, if its exploited by cyber criminals using Heartbleed, private data such as card details, user names, passwords, chat logs are vulnerable. Ask your bank, email provider, web administrator if their service is affected by the bug. Change your passwords on various websites if you can do that.

Exams Perspective:

Filed Under: Current Affairs, Science and Technology Tagged With: exploited by cyber criminals, Heartbleed security bug in OpenSSL, protocol built using SSL/TLS encryption.

Primary Sidebar

Subscribe To Newsletter





Like us on Facebook

Copyright © 2023 · Magazine Pro on Genesis Framework · WordPress · Log in