Updated: 04/09/2014 11:47 PM
Created: 04/09/2014 11:07 PM WDIO.com
A huge gap in the security software used by some of the biggest Internet companies has been found. It has been dubbed the 'Heartbleed' bug, and because of it, the private information of millions was sitting exposed.
You may recognize the little padlock in the top left corner of some websites you visit. It is supposed to designate the site as secure, but for the last two years that has not been case.
"The people that wrote this software for this part of that network communication forgot to check a part of that message," Pete Willemsen explained, an associate professor in UMD's computer science department.
Think of it like this: when your computer connects to a server it sends out a ping known as a heartbeat to check for a secure connection. But with this hole in the code, a hacker could send out a secret heartbeat and retrieve any information that is still in memory — that is where the name "Heartbleed" comes from.
"So, that could include your user names and your passwords," said Mark Lanterman, CEO of computer analysis company Computer Forensic Services. "In our testing it returned my VPN credentials. This is very, very serious."
Experts are advising people to consider changing all their online passwords.
But changing passwords will not do any good until the services install the recently-released software to fix the problem.
"This vulnerability, or bug, is really unfortunate in the sense that it sits with software on the servers... on the machines that you typically would connect to," said Prof. Willemsen. "They are responsible for updating that software."
Lanterman adds that "Amazon, your banks, any server, 66 percent of the web servers on the Internet are vulnerable to this attack."
Cyber security firm LastPass has created a search engine to determine if a website you use may have been affected. Find it by clicking here.
Police Arrest Five Individuals for Involvement in Superior Homicide
The Superior Police Department has released the name of a homicide victim in Superior Tuesday evening. They say 20-year-old Garth H. Velin of Superior was killed. Police arrested five individuals for their involvement in the homicide.
Local Specialist Asks Northlanders to 'Stay Calm' Regarding Recent Ebola Case in U.S.
Health officials are on high alert after the first case of Ebola in the United States. The patient, a man who traveled to the U.S. from Liberia, is in isolation at a Dallas hospital on Wednesday.
Police: Missing Teen Found, No Abduction Took Place
The Duluth Police Department says that the teenager allegedly pulled into a minivan on Wednesday afternoon against her will near Denfeld High School has been located.
Essar Steel Minnesota Closes Financing to Complete Mine, Pellet Plant
Essar Steel Minnesota announced they have completed their financing for their project in Nashwauk, and that construction will be ramping up.
McFadden and Franken Clash on Mining, Health Care
Candidates for U.S. Senate debated in Duluth on Wednesday. Things started off fairly friendly between Democratic Senator Al Franken and his Republican challenger, Mike McFadden.