Document Actions

'Heartbleed' bug in web technology threatens user data

The Telegraph - A flaw has been discovered in the encryption technology used to protect many of the world's major websites, leaving them vulnerable to data theft.

The so-called ‘Heartbleed’ bug, discovered by a team of researchers from Google and a small Finnish security firm called Codenomicon, is said to be one of the most serious security flaws ever found, partly because it remained undiscovered for more than two years.

Attackers can exploit vulnerable versions of the open-source software known as OpenSSL – which runs on millions of web servers – to steal passwords, credit card details, encryption keys and other sensitive data, without leaving any trace.