Here's a nasty little bug to make your heart bleed

[jojo]

I wonder how many of us have this already?

My slight comfort with these things, such as it is, is that I don't have any money and would be more chuffed than annoyed if someone thought the garbage on my computer was worth looking at.

The biggest headache I suspect, for most of us, is these people stealing accounts. Email addresses with interesting names for example. The hope, I suppose, has to be, that these scum are looking for bigger fish, which they can make money from.

Anyway, read and weep.

heartbleed.com/

www.theatlantic.com/technology/archive/2014/04/the-5-things-to-do-about-the-new-heartbleed-bug/360395/

www.huffingtonpost.co.uk/2014/04/08/heartbleed-bug-openssl_n_5109087.html

[GuiltySpark]

Nothing new there as far as I'm concerned, the only reason people are really shouting about it is because its gone on so long without any one knowing, now they're looking for someone to blame.

But these hacks/exploits have been going on for years in slightly different ways as well as using similar methods of intrusion (in terms of using CVE exploits in Flash, Java, HTTP etc).

Its interesting those sites say to change your password and then do it again after the patch? Better off just waiting until they're patched and then change them otherwise your data is available again.

[merchant42]

www.bbc.co.uk/news/technology-26971363

[vikingken]

Every time someone puts a new name to something, everyone and his mangy dog starts screaming. Nothing has changed one little bit. As long as you have got good protection and do regular maintenance, your in no more danger than you ever were. No one is 100% safe, 100% of the time and you can only do your best. Even if something gets on for a short time; your maintenance will get rid of it, as long as you clean up often enough. Some people clean up once a month and think thats regular; it might be, but its not regular enough.