Updated: 04/09/2014 11:47 PM
Created: 04/09/2014 11:07 PM WDIO.com
A huge gap in the security software used by some of the biggest Internet companies has been found. It has been dubbed the 'Heartbleed' bug, and because of it, the private information of millions was sitting exposed.
You may recognize the little padlock in the top left corner of some websites you visit. It is supposed to designate the site as secure, but for the last two years that has not been case.
"The people that wrote this software for this part of that network communication forgot to check a part of that message," Pete Willemsen explained, an associate professor in UMD's computer science department.
Think of it like this: when your computer connects to a server it sends out a ping known as a heartbeat to check for a secure connection. But with this hole in the code, a hacker could send out a secret heartbeat and retrieve any information that is still in memory — that is where the name "Heartbleed" comes from.
"So, that could include your user names and your passwords," said Mark Lanterman, CEO of computer analysis company Computer Forensic Services. "In our testing it returned my VPN credentials. This is very, very serious."
Experts are advising people to consider changing all their online passwords.
But changing passwords will not do any good until the services install the recently-released software to fix the problem.
"This vulnerability, or bug, is really unfortunate in the sense that it sits with software on the servers... on the machines that you typically would connect to," said Prof. Willemsen. "They are responsible for updating that software."
Lanterman adds that "Amazon, your banks, any server, 66 percent of the web servers on the Internet are vulnerable to this attack."
Cyber security firm LastPass has created a search engine to determine if a website you use may have been affected. Find it by clicking here.
Minnesota, Wisconsin Try to Reboot Income Tax Reciprocity
State tax officials in Minnesota and Wisconsin say they're working to reinstate a system that allowed 80,000 people who work across their shared border to file one state income tax return.
Wisconsin Assembly Committee Takes Up Right-to-Work Bill
Testimony has begun at a public hearing on Wisconsin's right-to-work bill, after the measure rapidly passed the Senate last week. The full Assembly is expected to vote Thursday.
Apostle Islands Ice Caves Open for Short Season with Growing Popularity
This time last year the Apostle Islands Ice Cave season was about to wrap up, but this year, it's just getting started, and the shorter season had crowds flocking to the attraction for its opening weekend. Just days ago, park officials gave the okay for the ice caves to open up to the nearly 11,000 visitors who came over the weekend.
Reward Offered in Red Lake Burning Puppy Case
The Humane Society of the United States is offering a reward of up to $5,000 for information leading to whoever left a puppy to die in a burning trash bin in northern Minnesota.
New Candidate for At-Large Duluth City Council Seat
The Duluth City Council at-large seat now has a new candidate in the running. Noah Hobbs announced on Sunday that he's running for the position.