Heartbleed: the level of threat is 11 out of 10

Internet-industry continues to suffer the most serious problems because of the discovered vulnerability dubbed Heartbleed. As reported earlier, Heartbleed allows cybercriminals to gain access to confidential information, stored on the servers, by using vulnerability of OpenSSL software that is extremely wide spread because it’s free.

There are, however, some good news: Apple corporation announced yesterday that users of its products and services were safe: Heartbleed does not affect “apple” websites and services. However, at the same time Cisco Systems and Juniper, two of the leaders of the telecommunication industry, announced discovery of some vulnerabilities in their products.

Observers suppose that it is too early to judge the real impact of the disaster, at least because Heartbleed exists apparently for at least two years but it was discovered only last week. Researcher Bruce Schneier called threat of Heartbleed “catastrophic”. According to his estimates, the vulnerability can affect up to half a million Web sites. "On the scale of 1 to 10, this is an 11," he said.


Back to the list