A group of security engineers have recently discovered a flaw that has been in OpenSSL for two years. The bug, known as Heartbleed, leaves users of websites using the said security system vulnerable to hackers. Private data such as passwords, usernames and credit card information might be compromised. However, netizens can take extra steps to somehow stay protected from the new bug.
Heartbleed reportedly affects half a million servers, CNet quotes internet research firm, Netcraft. Because of this, it would make sense to refrain from logging into accounts from affected sites before the site has announced that they've successfully fixed the issue. Users who are not sure if a certain site is part of the thousands of servers using OpenSSL version 10.1 to 10.1f can turn to LastPass to check if a certain website is vulnerable.
Chester Wisniewski, via CNN, suggests that users change the passwords to their accounts, but only after the website has fixed the vulnerability. "While it is never a bad idea to change your passwords, increase their strength and ensure they are sufficiently unique, you should only do this after confirming the site has been fixed," he notes.
ABC News says that it might also help for users to avoid using the same passwords and usernames across websites. Citing security expert Brian Kerbs, the outlet enumerates three main takeaways when it comes to security problems online:
- This highlights the danger of using the same password over and over again for all your sites.
- Using same username and same password on multiple sites that hold valuable information is a bad idea.
- For banking and email you should have different usernames and passwords.
CNet also suggests that users who have dished out their credit card information online keep track of their financial statements for the next few days. "Because attackers can access a server's memory for credit card information, it wouldn't hurt to be on the lookout for unfamiliar charges on your bank statements," says the report.
- Contribute to this Story:
- Send us a tip
- Send us a photo or video
- Suggest a correction