ADOTAS — The widely publicized heartbleed bug may be impacting as many as 500,000 systems across the Internet. Heartbleed is the name of a vulnerability in the OpenSSL program that powers encrypted communication to many of the world’s web sites and private networks.
The flaw could result in the exposure of any data resident in the memory that the OpenSSL process can read. This could include usernames and passwords, server private keys, and sensitive data such as credit card numbers or PHI. While this is clearly a concern, fortunately, the fix is usually a simple patch away. The majority of vendors have a patch available for this already.