Security breaches in websites and online platforms

Security breaches in websites and online platforms

Software and websites free of security issues are an utopia. Some of these errors can be cataloged only simple bugs and through prompt intervention can be remedied in short time, but others, such vulnerability discovered in OpenSSL, represent major errors that endanger the security of personal data or credit cards, which does not give acquisition confidence in online environment.

OpenSSL is a complex set of cryptographic functions that involve installation of SSL and TLS security protocols and HTTPS areas, virtually securing the online environment. Applicable in all operating systems, OpenSSL  secure all connections from the internet that you are running daily: websites, online stores, email servers etc.

One of the worst moments of existence of OpenSSL, was the appearance of a breach in the whole process platform, which allowed hackers to have computer access to all personal information stored in server memory. Discovered in the source code of the extension Heartbeat for TLS, of where he was nicknamed heartbleed, this security error gives a memory area for reading the information of more than 64KB, enough to compromise users privacy data.

To understand the seriousness of this security breach, about a half million servers were targeted for HTTPS attacks: Flickr, Archive.org, Yahoo.com, Yahoo Mail. It should be noted that Google, Facebook, YouTube or Wikipedia were not affected due to their superior information security system.

Because this breach aimed primarily servers, common user does not have much control over avoiding these kinds of problems, the only preventive measure they can take is to change with regularity passwords and access data on accounts, but will never know if they were not already compromised.


You consent to our cookies if you continue to use our website

Learn more OK