Critical security vulnerability Heartbleed disclosed in OpenSSL

By Shawn Knight ยท 7 replies
Apr 8, 2014
Post New Reply
  1. The OpenSSL project on Tuesday disclosed a major security flaw called Heartbleed that could be used by those with malicious intent to spy on the "secret digital handshake" that takes place during secure transactions using Transport Layer Security (TLS) /...

    Read more
  2. RzmmDX

    RzmmDX TS Guru Posts: 313   +67

    That memory overflow.
  3. All VPNs just became useless ?

    Just wondering, if the ssl connection to the servers arent secure, they won't need to ask who you are, they will know ?
  4. Darth Shiv

    Darth Shiv TS Evangelist Posts: 1,811   +472

    They have to be specifically trying to break into the VPN. If it is a major VPN provider, you probably will have a problem!
  5. Arwed

    Arwed TS Rookie

    Cryptocalypse. Might come handy though when u want to SSH into your brand new Tesla ;)
  6. Well I asked the question of the VPN earlier, and to shiv who replied. I could imagine a little team from the MPAA / RIAA jumping on this like hot sauce, this is like a gift from the heavens for them is it not ? Regardless of how illegal their footing may be to do such a thing, they still would.

    I understand not every site etc is affected or has been fixed to protect the sploit, apparently twitter google and a few others got on this, steam on the overhand apparently did not.
  7. jobeard

    jobeard TS Ambassador Posts: 11,131   +982

  8. Darth Shiv

    Darth Shiv TS Evangelist Posts: 1,811   +472

    They couldn't use that information in court I wouldn't have thought... they would be guilty of hacking the servers.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...