Jump to content

Openssl Breach

 Share
Shadeleaf

Recommended Posts

Shadeleaf    1022

Shadeleaf
Posted

Hello there everyone! Arzota here today to tell you to get paranoid once more!

All joking aside, you legitimately may want to change your passwords to Minecraft and any other site that begins with "Https:\\". The reason for this is a noticeable bug that has sprung up within the last two days dubbed "Heartbleed"

 

heartbleed.png

 

The OpenSSL Heartbleed bug is basicly a breach of the Transport Layer Security associated with the servers that use OpenSSL (Youtube, Minecraft, Yahoo, Google, et cetera). What this means is that hackers and attackers of any sort might slip into a system and retrieve information of 64kb or less per attack, which is plenty enough for passwords, usernames, and all other such sensitive information when added up.

 

What can you do?

 

Well thats simple. Because the information they may or may not have will be accurate until a change is made, the Tech Team suggests you change up your passwords on any affected sites, especially if you have one master password for all of them. This is because usernames are also stored, and it wouldn't be too much of a jump from one account to the next to exploit the security.

 

Tl;dr: Change your passwords on any websites starting with Https:\\ at the start of the Url if you want to ensure your security.

 

Official Link to Bug

 

 

List of common sites:

This has been a Tech Team PSA, funded by no one.

8
Link to post
Share on other sites

Alan    1815

Alan
Posted

*Changes all his passwords from "Druid" to "Drood"*

4
Link to post
Share on other sites

Nug    2011

Nug
Posted

thanks for the psa thingie. :D

Link to post
Share on other sites

Fimlin    1997

Fimlin
Posted

Seems to me like a heartbeat would leak new info rather than old, is this so? Cause it might in fact do the opposite, nothing there says to change your passwords

Link to post
Share on other sites

Kardel    1054

Kardel
Posted

Community.gif

 

 

Panic! Withdraw all the money from your bank accounts! Liquidate all of your assets! Buy gold! The world is ending!

 

I just noticed this was my 666th post. . .

12
Link to post
Share on other sites

Overland    349

Overland
Posted

Just wondering, does it only affect TLS 1.1 and 1.2, which apparently contained the buggy versions? As that is what I've gathered from the link you posted.

Link to post
Share on other sites

Shadeleaf    1022

Shadeleaf
  • Author
Posted

Just wondering, does it only affect TLS 1.1 and 1.2, which apparently contained the buggy versions? As that is what I've gathered from the link you posted.

Logicaly yes, atleast for those installed onto operating systems. Many websites haven't bothered updating their TLS to the newer version due to how annoying the process would be. Now that it stands a security threat, they will most likely update to the patched version released or risk further loss of Data.

Link to post
Share on other sites

tjt810    18

tjt810
Posted

Whats the point of stealing a youtube account, unless your famous, then it doesn't really matter does it?

Link to post
Share on other sites

JtPv    140

JtPv
Posted

CQ7RSMd.gif

Completely Unrelated Sidenote: Everblue might have competition as king of the gifs... rip world

Completely Related Not Sidenote: Well, rip internet.

 

keep-calm-and-rest-in-peace-18.png

 

Link to post
Share on other sites
 Share
Go to topic listing

  • Recently Browsing   0 members

    No registered users viewing this page.



×
×
  • Create New...