SlideShare una empresa de Scribd logo

The heart bleed virus

San Diego Continuing Education
San Diego Continuing Education

Make sure that you are prepared and protected.

EducaciónTecnología
1 de 9
Descargar para leer sin conexión
What is it, and what do you do about it??? The Heart Bleed Virus
What is the Heart Bleed virus • Flaw in Open SSL, which is the encryption used to make data transfer secure • Encryption makes the data look like nonsense to anyone but the recipient • Sometimes, a computer will send out a small packet of data (called a heartbeat) to see if there is still a computer at the end of its connection • Researchers discovered a programming error that allowed people to send a well-disguised packet of data that looks like the heartbeat
Some key points • This flaw (the ability to send a fake packet of data) has been available for abuse for about two years! • The flaw was discovered by Google • There are no traces left when these fake data packages are sent
So how bad is it? • Pretty bad. Web servers keep lots of info on their sites, such as usernames, passwords, content which has been uploaded and even credit card numbers • Even worse, hackers can steal encryption keys, making it possible to intercept data and read it without having to have a secure connection • This means that companies can change their encryption keys, but still be vulnerable!
What does it mean to you? • This is an issue not only with your devices, but also with the software that powers the services we use • Sites can include social media, employment, hobby sites, software installation sites or even government sites • 66% of sites are powered by technology built around SSL
What do you do? • Since it has been around for two years and leaves no trace, assume that accounts may have been compromised. • Change online passwords, especially ones needing privacy and security • Remember, though, if your site hasn’t upgraded its software, you may need to change the password again
Are my sites affected? • Most major service providers have either fixed or are currently fixing their sites. • On this site (run by Filippo Valsor, an Italian consultant specializing in security) you can enter a site and see if it has been fixed or unaffected. Try this today! http://filippo.io/Heartbleed/
Sites to change passwords on • Social networks: Facebook, Instagram, Pinterest, Tumblr, Twitter, • Other companies: Google, Yahoo, Gmail, Yahoo mail, • Shopping sites: Etsy, GoDaddy, • Entertainment: Flickr, Netflix, SoundCloud, YouTube, • Banking: USAA, • Other: Dropbox, GitHub, OKCupid,
Change your password today to protect your identity! Sources: http://www.businessinsider.com/heartbleed-bug-explainer-2014-4, http://mashable.com/2014/04/11/mashable-explains-heartbleed-2/

Recomendados

Sunrise pc support heart bleed scam alert
Sunrise pc support heart bleed scam alertSunrise pc support heart bleed scam alert
Sunrise pc support heart bleed scam alert
jimforner
 
Advanced Project 1: Heart Bleed
Advanced Project 1: Heart BleedAdvanced Project 1: Heart Bleed
Advanced Project 1: Heart Bleed
Kenneth Poon
 
Heartbleed
Heartbleed Heartbleed
Heartbleed
Shyam Bahadur Sunari Magar
 
Heart bleed presentation
Heart bleed presentationHeart bleed presentation
Heart bleed presentation
Patrick Shields
 
Heartbleed vulnerability
Heartbleed vulnerabilityHeartbleed vulnerability
Heartbleed vulnerability
Phannarith Ou, G-CISO
 
Heartbleed by-danish amber
Heartbleed by-danish amberHeartbleed by-danish amber
Heartbleed by-danish amber
Raghunath G
 
Tech Trends 2015 and Beyond
Tech Trends 2015 and BeyondTech Trends 2015 and Beyond
Tech Trends 2015 and Beyond
Isobar Australia
 
Heartbleed Bug Vulnerability: Discovery, Impact and Solution
Heartbleed Bug Vulnerability: Discovery, Impact and SolutionHeartbleed Bug Vulnerability: Discovery, Impact and Solution
Heartbleed Bug Vulnerability: Discovery, Impact and Solution
CASCouncil
 

Recomendados

Sunrise pc support heart bleed scam alert
Sunrise pc support heart bleed scam alertSunrise pc support heart bleed scam alert
Sunrise pc support heart bleed scam alert
jimforner
 
Advanced Project 1: Heart Bleed
Advanced Project 1: Heart BleedAdvanced Project 1: Heart Bleed
Advanced Project 1: Heart Bleed
Kenneth Poon
 
Heartbleed
Heartbleed Heartbleed
Heartbleed
Shyam Bahadur Sunari Magar
 
Heart bleed presentation
Heart bleed presentationHeart bleed presentation
Heart bleed presentation
Patrick Shields
 
Heartbleed vulnerability
Heartbleed vulnerabilityHeartbleed vulnerability
Heartbleed vulnerability
Phannarith Ou, G-CISO
 
Heartbleed by-danish amber
Heartbleed by-danish amberHeartbleed by-danish amber
Heartbleed by-danish amber
Raghunath G
 
Tech Trends 2015 and Beyond
Tech Trends 2015 and BeyondTech Trends 2015 and Beyond
Tech Trends 2015 and Beyond
Isobar Australia
 
Heartbleed Bug Vulnerability: Discovery, Impact and Solution
Heartbleed Bug Vulnerability: Discovery, Impact and SolutionHeartbleed Bug Vulnerability: Discovery, Impact and Solution
Heartbleed Bug Vulnerability: Discovery, Impact and Solution
CASCouncil
 
Teknologi masa depan google soli
Teknologi masa depan google soliTeknologi masa depan google soli
Teknologi masa depan google soli
Anjar Ridwan
 
Open ssl heart bleed weakness.
Open ssl heart bleed weakness.Open ssl heart bleed weakness.
Open ssl heart bleed weakness.
Khaled Mosharraf
 
COMP 4026 Lecture 5 OpenFrameworks and Soli
COMP 4026 Lecture 5 OpenFrameworks and SoliCOMP 4026 Lecture 5 OpenFrameworks and Soli
COMP 4026 Lecture 5 OpenFrameworks and Soli
Mark Billinghurst
 
Heartbleed
HeartbleedHeartbleed
Heartbleed
Susan Allor
 
Heartbleed
HeartbleedHeartbleed
Heartbleed
Ibrahim Mosaad
 
Components of a Pulse Radar System
Components of a Pulse Radar SystemComponents of a Pulse Radar System
Components of a Pulse Radar System
Ülger Ahmet
 
Radar Application
Radar ApplicationRadar Application
Radar Application
mathurrohitji
 
radar technology
radar technologyradar technology
radar technology
vipin mishra
 
Radar Powerpoint
Radar PowerpointRadar Powerpoint
Radar Powerpoint
Ryan rice
 
Radar ppt
Radar pptRadar ppt
Radar ppt
pratibha007
 
Presentation net neutrality updated December 2017
Presentation net neutrality updated December 2017Presentation net neutrality updated December 2017
Presentation net neutrality updated December 2017
San Diego Continuing Education
 
No one cares about your damn emails
No one cares about your damn emailsNo one cares about your damn emails
No one cares about your damn emails
San Diego Continuing Education
 
What happened on October 21
What happened on October 21What happened on October 21
What happened on October 21
San Diego Continuing Education
 
An introduction to diabetes
An introduction to diabetesAn introduction to diabetes
An introduction to diabetes
San Diego Continuing Education
 
An end to net neutrality
An end to net neutralityAn end to net neutrality
An end to net neutrality
San Diego Continuing Education
 
Burning fat
Burning fatBurning fat
Burning fat
San Diego Continuing Education
 
Security gap in Internet Explorer
Security gap in Internet ExplorerSecurity gap in Internet Explorer
Security gap in Internet Explorer
San Diego Continuing Education
 
Osteoarthritis
OsteoarthritisOsteoarthritis
Osteoarthritis
San Diego Continuing Education
 
Healthy communication presentation
Healthy communication presentationHealthy communication presentation
Healthy communication presentation
San Diego Continuing Education
 
Bitcoin
BitcoinBitcoin
Bitcoin
San Diego Continuing Education
 
Review of brain plasticity
Review of brain plasticityReview of brain plasticity
Review of brain plasticity
San Diego Continuing Education
 
Depression
DepressionDepression
Depression
San Diego Continuing Education
 

Más contenido relacionado

Destacado

Teknologi masa depan google soli
Teknologi masa depan google soliTeknologi masa depan google soli
Teknologi masa depan google soli
Anjar Ridwan
 
Open ssl heart bleed weakness.
Open ssl heart bleed weakness.Open ssl heart bleed weakness.
Open ssl heart bleed weakness.
Khaled Mosharraf
 

Destacado (10)

Teknologi masa depan google soli
Teknologi masa depan google soliTeknologi masa depan google soli
Teknologi masa depan google soli
 
Open ssl heart bleed weakness.
Open ssl heart bleed weakness.Open ssl heart bleed weakness.
Open ssl heart bleed weakness.
 
COMP 4026 Lecture 5 OpenFrameworks and Soli
COMP 4026 Lecture 5 OpenFrameworks and SoliCOMP 4026 Lecture 5 OpenFrameworks and Soli
COMP 4026 Lecture 5 OpenFrameworks and Soli
 
Heartbleed
HeartbleedHeartbleed
Heartbleed
 
Heartbleed
HeartbleedHeartbleed
Heartbleed
 
Components of a Pulse Radar System
Components of a Pulse Radar SystemComponents of a Pulse Radar System
Components of a Pulse Radar System
 
Radar Application
Radar ApplicationRadar Application
Radar Application
 
radar technology
radar technologyradar technology
radar technology
 
Radar Powerpoint
Radar PowerpointRadar Powerpoint
Radar Powerpoint
 
Radar ppt
Radar pptRadar ppt
Radar ppt
 

Más de San Diego Continuing Education

Más de San Diego Continuing Education (20)

Presentation net neutrality updated December 2017
Presentation net neutrality updated December 2017Presentation net neutrality updated December 2017
Presentation net neutrality updated December 2017
 
No one cares about your damn emails
No one cares about your damn emailsNo one cares about your damn emails
No one cares about your damn emails
 
What happened on October 21
What happened on October 21What happened on October 21
What happened on October 21
 
An introduction to diabetes
An introduction to diabetesAn introduction to diabetes
An introduction to diabetes
 
An end to net neutrality
An end to net neutralityAn end to net neutrality
An end to net neutrality
 
Burning fat
Burning fatBurning fat
Burning fat
 
Security gap in Internet Explorer
Security gap in Internet ExplorerSecurity gap in Internet Explorer
Security gap in Internet Explorer
 
Osteoarthritis
OsteoarthritisOsteoarthritis
Osteoarthritis
 
Healthy communication presentation
Healthy communication presentationHealthy communication presentation
Healthy communication presentation
 
Bitcoin
BitcoinBitcoin
Bitcoin
 
Review of brain plasticity
Review of brain plasticityReview of brain plasticity
Review of brain plasticity
 
Depression
DepressionDepression
Depression
 
5 technologies that have changed our lives
5 technologies that have changed our lives5 technologies that have changed our lives
5 technologies that have changed our lives
 
Communications presentation
Communications presentationCommunications presentation
Communications presentation
 
Depression & anxiety
Depression & anxietyDepression & anxiety
Depression & anxiety
 
Finding reliable health information online
Finding reliable health information onlineFinding reliable health information online
Finding reliable health information online
 
Windows 7: The Basics
Windows 7: The BasicsWindows 7: The Basics
Windows 7: The Basics
 
Week 4 internet overview
Week 4 internet overviewWeek 4 internet overview
Week 4 internet overview
 
Finding a purpose
Finding a purposeFinding a purpose
Finding a purpose
 
Social networks
Social networks Social networks
Social networks
 

Último

Spellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please PractiseSpellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please Practise
AnaAcapella
 
Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functions
KarakKing
 

Último (20)

How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17
 
Application orientated numerical on hev.ppt
Application orientated numerical on hev.pptApplication orientated numerical on hev.ppt
Application orientated numerical on hev.ppt
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The Basics
 
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
 
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
 
Fostering Friendships - Enhancing Social Bonds in the Classroom
Fostering Friendships - Enhancing Social Bonds in the ClassroomFostering Friendships - Enhancing Social Bonds in the Classroom
Fostering Friendships - Enhancing Social Bonds in the Classroom
 
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
 
Single or Multiple melodic lines structure
Single or Multiple melodic lines structureSingle or Multiple melodic lines structure
Single or Multiple melodic lines structure
 
Sociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning ExhibitSociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning Exhibit
 
Google Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptxGoogle Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptx
 
Spellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please PractiseSpellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please Practise
 
Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...
Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...
Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...
 
Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functions
 
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdfUnit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
 
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
 
Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024
 
General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...
 
How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17
 
FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024
 
Wellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxWellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptx
 

The heart bleed virus

  • 1. What is it, and what do you do about it??? The Heart Bleed Virus
  • 2. What is the Heart Bleed virus • Flaw in Open SSL, which is the encryption used to make data transfer secure • Encryption makes the data look like nonsense to anyone but the recipient • Sometimes, a computer will send out a small packet of data (called a heartbeat) to see if there is still a computer at the end of its connection • Researchers discovered a programming error that allowed people to send a well-disguised packet of data that looks like the heartbeat
  • 3. Some key points • This flaw (the ability to send a fake packet of data) has been available for abuse for about two years! • The flaw was discovered by Google • There are no traces left when these fake data packages are sent
  • 4. So how bad is it? • Pretty bad. Web servers keep lots of info on their sites, such as usernames, passwords, content which has been uploaded and even credit card numbers • Even worse, hackers can steal encryption keys, making it possible to intercept data and read it without having to have a secure connection • This means that companies can change their encryption keys, but still be vulnerable!
  • 5. What does it mean to you? • This is an issue not only with your devices, but also with the software that powers the services we use • Sites can include social media, employment, hobby sites, software installation sites or even government sites • 66% of sites are powered by technology built around SSL
  • 6. What do you do? • Since it has been around for two years and leaves no trace, assume that accounts may have been compromised. • Change online passwords, especially ones needing privacy and security • Remember, though, if your site hasn’t upgraded its software, you may need to change the password again
  • 7. Are my sites affected? • Most major service providers have either fixed or are currently fixing their sites. • On this site (run by Filippo Valsor, an Italian consultant specializing in security) you can enter a site and see if it has been fixed or unaffected. Try this today! http://filippo.io/Heartbleed/
  • 8. Sites to change passwords on • Social networks: Facebook, Instagram, Pinterest, Tumblr, Twitter, • Other companies: Google, Yahoo, Gmail, Yahoo mail, • Shopping sites: Etsy, GoDaddy, • Entertainment: Flickr, Netflix, SoundCloud, YouTube, • Banking: USAA, • Other: Dropbox, GitHub, OKCupid,
  • 9. Change your password today to protect your identity! Sources: http://www.businessinsider.com/heartbleed-bug-explainer-2014-4, http://mashable.com/2014/04/11/mashable-explains-heartbleed-2/