First Heartbleed-Based Cyberattacks Discovered

[Guest]

The Canadian tax agency and a U.K. parenting website are the first confirmed instances of Heartbleed exploits, experts say.

First Heartbleed-Based Cyberattacks Discovered : Read more

 

[ddpruitt]

So far no one has been able to find evidence that Heartbleed was exploited before that time

That's because it's not possible to detect attacks that happened in the past in this case. As has been said over and over ad nauseam this attach leaves no traces.

 

[josejones]

Sooo, how do we get rid of it?

 

[bmerigan]

The second case - she doesn't know that's how they got her login details - it's a huge assumption. She more likely uses her childs name as her password.

 

[AndrewJacksonZA]

She more likely uses her childs name as her password.

Lol. That's a bit harsh.

 

[rwinches]

To be clear only sites using openSSL were vulnerable.
So sites like Amazon and your bank were not vulnerable.

As with many of these astounding discoveries, just because it could be used does not mean it was.