Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest "Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions.

1. Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify
"Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of
the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest
"Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions. Given that the Secure-Socket
Layer (SSL) and Transport Layer Security (TLS) are pivotal in Internet security, this security chasm caused
by "Heart-bleed" is grim. Versions 1.0.1 through 1.0.1f are vulnerable to exploits, and stand to expose
user credentials, credit card data, sensitive documents and the server’s certificate itself.
Unlike the previous attacks seen recently, "Heart-bleed" doesn’t actually require any interesting
cryptographic software. As the attacks leave no evidence in server logs, there is in reality no way of
knowing if the bug has been actively exploited – thus making the effects more devastating than ever.
Regardless of whether you realize it, there is a lot of the security infrastructure you rely on that is
dependent in some way on OpenSSL, and unfortunately the reliance on OpenSSL is only increasing. The
risk with the OpenSSL Heart bleed vulnerability is bizarre, as there are a large number of private keys
exposed on the Internet, leading to potential memory leaks in server-client interactions.
Click here to learn more.