Updated: 04/09/2014 11:47 PM
Created: 04/09/2014 11:07 PM WDIO.com
A huge gap in the security software used by some of the biggest Internet companies has been found. It has been dubbed the 'Heartbleed' bug, and because of it, the private information of millions was sitting exposed.
You may recognize the little padlock in the top left corner of some websites you visit. It is supposed to designate the site as secure, but for the last two years that has not been case.
"The people that wrote this software for this part of that network communication forgot to check a part of that message," Pete Willemsen explained, an associate professor in UMD's computer science department.
Think of it like this: when your computer connects to a server it sends out a ping known as a heartbeat to check for a secure connection. But with this hole in the code, a hacker could send out a secret heartbeat and retrieve any information that is still in memory — that is where the name "Heartbleed" comes from.
"So, that could include your user names and your passwords," said Mark Lanterman, CEO of computer analysis company Computer Forensic Services. "In our testing it returned my VPN credentials. This is very, very serious."
Experts are advising people to consider changing all their online passwords.
But changing passwords will not do any good until the services install the recently-released software to fix the problem.
"This vulnerability, or bug, is really unfortunate in the sense that it sits with software on the servers... on the machines that you typically would connect to," said Prof. Willemsen. "They are responsible for updating that software."
Lanterman adds that "Amazon, your banks, any server, 66 percent of the web servers on the Internet are vulnerable to this attack."
Cyber security firm LastPass has created a search engine to determine if a website you use may have been affected. Find it by clicking here.
State Patrol Investigating Fatal Accident Near Floodwood
The Minnesota State Patrol says they are investigating a fatal two-vehicle accident on Highway 2 near Floodwood.
Up-Close Look at Winter Layup in the Port
U.S. Flag Fleets transport more than 115 million tons of cargo per year, but all of that weight combined with last year's heavy ice, means a lot of repair damage during this year's winter layup.
Beargrease 2015: Crossing the Finish Line
For first-time mushers and veterans, there's just something about crossing that Beargrease finish line. Erin Altemus, who took fourth place in the marathon, said it's the same for the dogs. "There is a psychological thing about that," she said. "They sort of understand that they're at the end."
Anderson Takes Top Spot in Tight Beargrease Finish
After more than 300 miles on the trail, musher Ryan Anderson and his team clinched first place in the 31st annual John Beargrease Sled Dog Marathon. His team of 11 pulled into the finish line at Billy's Bar in Duluth just before 3 a.m. Wednesday. This is Anderson's second full-distance win. He won the marathon back in 2011 when he beat out musher Nathan Schroeder by just 20 seconds
17-Time Beargrease Finisher 'A Special Musher'
Four-time Beargrease champion Jamie Nelson finished the marathon for the 17th time on Wednesday. Her handler and longtime friend says her success and longevity is no coincidence. "Jamie's a special musher."