Computer experts warn of heartbleed bug
Sat, 12 Apr 2014 02:55:45 GMT —
An internet security bug has exposed millions of people's financial information, emails, user names and passwords to hackers. This latest risk is called the "Heartbleed" bug.
According to security firm, Codenomicon, you're likely to be affected either directly or indirectly.
That's because popular web sites including those used by social media, business, and even government could be vulnerable.
They all use the security encryption system called OpenSSL. The firm published information on its website describing the bug. OpenSSL stands for secure socket layer.
It provides communication security and privacy over the internet for applications such as web, email, instant messaging and some virtual private networks.
On the site, the bug is described as a serious vulnerability in the OpenSSL cryptographic software library. This weakness allows hackers to steal information such as passwords.
"It's not a virus or any type of malicious software. It's a vulnerability, it's a bug in OpenSSL that the work servers are using. It's all in the bank sites. Any kind of online institution or anywhere close else that takes secure passwords," explains Justin Cook, Owner and Technician of Glass City PC Computer Repair in Toledo.
Heartbleed.com's website says vulnerable versions of the bug have been around for two years.
Seth Powless, University of Toledo professor at the College of Business and Innovation warns people to not change their current passwords immediately.
"With heartbleed, the important thing to do right now is not change your password, not log into your bank information, not do any of that stuff realistically until you check that website to make sure it's clean," explains Powless.
Experts also advise people pay extra attention to your financial records over the next few months, looking for potential unusual activity.