When you wake up on a beautiful sunny day, and you see all the people you follow on twitter talking about something specific, then you should know that you missed out on some big news that happened while you were asleep. That’s what happened in my case today when i woke up and found out people talking about an OpenSSL bug called Heartbleed
Might be a little downtime today as I patch that nightmare OpenSSL bug— Pinboard (@Pinboard) April 8, 2014
There is a critical bug in OpenSSL: http://t.co/sMShGnCQ3t. Patch your systems todays. (Note: the Authy API has already been patched).— Authy (@Authy) April 8, 2014
So what is this OpenSSL bug / Heartbleed / Nightmare? According to the the website:
It’s a serious vulnerability in the popular OpenSSL cryptographic software library.
This bug allow hackers to basically steal all the information they want, from user names and passwords, instant messages, emails…etc, not a big deal, right?
The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software.
So to all of you security nerds out there and people who use OpenSSL, this is a great time to read all about this bug and fix it as soon as possible.