A security breach in OpenSSL has been found by Codenomicon that affects all of us. It is a vulnerability in the SSL protocol that allows allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software.
What this means is that https: is no longer secure.
This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content.
The bug is being nicknamed Heartbleed - time to change ALL your passwords. But make sure that the site you are using has already deployed Fixed OpenSSL - otherwise, when you change your password, you are just giving your password up for capture.
More info here: http://heartbleed.com/
What this means is that https: is no longer secure.
This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content.
The bug is being nicknamed Heartbleed - time to change ALL your passwords. But make sure that the site you are using has already deployed Fixed OpenSSL - otherwise, when you change your password, you are just giving your password up for capture.
More info here: http://heartbleed.com/