Beta Brain - Heartbleed: What It Is, How It Can Harm You And What Can You Do To Protect Your Data
In a nutshell, Heartbleed is a bug in the cryptographic software that secures the communication between your browser and a website. This leaves, and has left for the past two years, the Web vulnerable to eavesdropping. It allows attackers to read data – your data – off a Web server, including usernames, passwords and credit card numbers. It also allows them to obtain sites’ SSL encryption keys so they may impersonate servers and decrypt their communications.
One of the most disturbing facts about Heartbleed is that it is virtually impossible to know if someone has exploited it, so victims may not know they are, indeed, victims.
To protect yourself, you may start by changing all your passwords. Unfortunately, it is possible that the sites you use have been affected. To protect your business’ data, it is important you have a solid security policy in place. If you haven’t done so in a while, this would be a good time to do a security assessment and run some penetration tests.