Heartbleed · ITS Security Blog

Tag Archives: Heartbleed

More OpenSSL Vulnerabilities Reported

Posted on June 10, 2014 by mbordas

Security researchers have recently identified several vulnerabilities in the OpenSSL encryption library in addition to the widely publicized Heartbleed bug (see https://it-security.usc.edu/2014/04/09/openssl-heartbleed-bug for more information about Heartbleed). System Administrators within USC’s IT units should complete the action items (fixes) summarized … Continue reading →

Posted in Security Updates | Tagged Heartbleed, OpenSSL, security advisory, software patches and updates

Heartbleed – vendor updates 2014-04-17 10:56

Posted on April 17, 2014 by Robert

Below is a partial list of vendors that have released updates to address the Heartbleed vulnerability.
This list will be updated as more information becomes available. Continue reading →

Posted in Security Updates | Tagged Heartbleed

Server certificates and Heartbleed

Posted on April 13, 2014 by Robert

Cloudflare, a large web-hosting company, has a very detailed article on how server certificates are not (in the real world) extractable using the Heartbleed bug: http://blog.cloudflare.com/answering-the-critical-question-can-you-get-private-ssl-keys-using-heartbleed They set up a test server and challenged anybody to obtain the private key. … Continue reading →

Posted in Password Security, Recommended Reading, Security Updates | Tagged Heartbleed

Passwords You Need to Change due to the Heartbleed Bug

Posted on April 11, 2014 by mbordas

Many websites and online services, including Facebook, Instagram, Google, and Yahoo, were affected by the recently announced Heartbleed vulnerability. The site linked below has collected responses from social media, email, financial, and other companies regarding steps they have taken to … Continue reading →

Posted in Facebook, Password Security, Security Updates, Social Networking | Tagged Heartbleed

OpenSSL Vulnerability (Heartbleed Bug)

Posted on April 9, 2014 by mbordas

Security researchers have discovered a vulnerability, named the Heartbleed bug, in the OpenSSL encryption library that could allow attackers to access secure information stored in a server’s system memory, including usernames, passwords, and private encryption keys. OpenSSL is used by … Continue reading →

Posted in Password Security, Phishing, Security Breach | Tagged Heartbleed

Search ITS Security Blog
Recent Posts
Categories
Tags
adobe amazon android antivirus apple compromised account credit card ddos dropbox email encryption exploits Facebook flash player google Heartbleed identity theft information security iTunes java linkedin linux macintosh mac os x malware microsoft mobile mozilla password security patch tuesday phishing privacy security advisory security breach security terms skype social engineering social networking software patches and updates spam user education vpn web browser security wifi worm
Archives

University of Southern California

ITS Information Technology Services

A division of the Office of the Chief Information Officer

ITS Security Blog

Tag Archives: Heartbleed

More OpenSSL Vulnerabilities Reported

Heartbleed – vendor updates 2014-04-17 10:56

Server certificates and Heartbleed

Passwords You Need to Change due to the Heartbleed Bug

OpenSSL Vulnerability (Heartbleed Bug)

Recent Posts

Categories

Archives

A division of the Office of the Chief Information Officer

Tag Archives: Heartbleed

Recent Posts

Categories

Tags

Archives