abc
QUICK LINKS:

New Online Security Risk 'Heartbleed' Leaves Millions Vulnerable, Experts Recommend Password Changes

Updated: 04/09/2014 11:47 PM
Created: 04/09/2014 11:07 PM WDIO.com

A huge gap in the security software used by some of the biggest Internet companies has been found. It has been dubbed the 'Heartbleed' bug, and because of it, the private information of millions was sitting exposed. 

You may recognize the little padlock in the top left corner of some websites you visit. It is supposed to designate the site as secure, but for the last two years that has not been case.  

"The people that wrote this software for this part of that network communication forgot to check a part of that message," Pete Willemsen explained, an associate professor in UMD's computer science department. 

Think of it like this: when your computer connects to a server it sends out a ping known as a heartbeat to check for a secure connection. But with this hole in the code, a hacker could send out a secret heartbeat and retrieve any information that is still in memory — that is where the name "Heartbleed" comes from.

"So, that could include your user names and your passwords," said Mark Lanterman, CEO of computer analysis company Computer Forensic Services. "In our testing it returned my VPN credentials. This is very, very serious."

Experts are advising people to consider changing all their online passwords.

But changing passwords will not do any good until the services install the recently-released software to fix the problem. 

"This vulnerability, or bug, is really unfortunate in the sense that it sits with software on the servers... on the machines that you typically would connect to," said Prof. Willemsen. "They are responsible for updating that software."

Lanterman adds that "Amazon, your banks, any server, 66 percent of the web servers on the Internet are vulnerable to this attack."

Cyber security firm LastPass has created a search engine to determine if a website you use may have been affected. Find it by clicking here.

Front Page

  • Alleged Wisc. Bank Robber in St. Louis County Jail

    A man was arrested in Duluth Saturday night after he allegedly robbed a bank in Eau Claire, Wisc. the night before. The Eau Claire Police Department responded to a bank robbery at Wells Fargo Bank in Eau Claire on Friday night.

  • Licenses, Deer Population Down for Wisconsin Deer Opener

    The Wisconsin firearm deer hunting tradition got off to a safe start as Department of Natural Resources officials said they had received no reports of accidental shootings or other injuries by mid-afternoon Sunday on the opener of the state's nine-day gun deer hunt.

  • Northlanders Give Back in Preparation for Holiday Season

    Northlanders gave back on Saturday in preparation for the holiday season. It was Family Volunteer Day at the Duluth Library, and folks participated in several friendly projects.

  • "By Us, For Us" Meeting to Discuss Vision for Equity in Duluth

    Duluth's Native and African heritage communities came together on Saturday to share experiences and ideas at the 1st United Methodist Church. The meeting called "By Us, For Us" invited people of color, African Americans and Native Americans to come together to break bread and learn about each other culturally. 

  • MNsure Enrollments, Renewals Approach 8,000

    Minnesota's health insurance exchange says it has enrolled nearly 8,000 Minnesotans in health plans in the first week of open enrollment this fall. The deadline for enrolling in coverage that takes effect Jan. 1 is Dec. 15.

 

Freezing Rain Advisory

MN AREAS AFFECTED: East Marshall; East Polk; Lake Of The Woods; Mahnomen; North Beltrami; North Clearwater; Pennington; Red Lake; Roseau; South Beltrami; South Clearwater
Expires: 11/24/2014 12:00 AM

Dense Fog Advisory

WI AREAS AFFECTED: Ashland; Bayfield; Burnett; Douglas; Iron; Price; Sawyer; Washburn
Expires: 11/24/2014 12:00 AM

Lake Effect Snow Advisory

WI AREAS AFFECTED: Bayfield; Douglas
Expires: 11/25/2014 6:00 AM

Lake Effect Snow Advisory

WI AREAS AFFECTED: Ashland
Expires: 11/25/2014 8:00 AM

Lake Effect Snow Advisory

WI AREAS AFFECTED: Iron
Expires: 11/25/2014 8:00 AM

Lake Effect Snow Advisory

MI AREAS AFFECTED: Gogebic; Ontonagon
Expires: 11/25/2014 7:00 AM

Advertisement
Advertisement
Advertisement
Advertisement