Major Security Hole for Passwords, Stored Files and Bank Details Discovered
For two years hackers have been exploiting a huge flaw in the internet security protocol known as OpenSSL that allowed them to access personal data on computers and take usernames, passwords, social security numbers, and other valuable personal data. The bug, known as Heartbleed by researchers, leaves no trace it was even present in the computer. Consumers are left with agonizing reality of not even knowing if their personal information has been taken, and how, or when to change their passwords if their system is already hacked.
Experts Find a Door Ajar in an Internet Security Method Thought Safe
Updated | A flaw has been discovered in one of the Internet’s key security methods, potentially forcing a wide swath of websites to make changes to protect the security of consumers.
The problem was first discovered by a team of Finnish security experts and researchers at Google last week and disclosed on Monday. By Tuesday afternoon, a number of large websites, including Yahoo, Facebook, Google and Amazon Web Services, said they were fixing the problem or had already fixed it.
Researchers were still looking at the impact on consumers but warned it could be significant. Users’ most sensitive information — passwords, stored files, bank details, even Social Security numbers — could be vulnerable because of the flaw.