The Clinton Herald, Clinton, Iowa

Breaking News

Business & Technology

April 9, 2014

Fix released for widespread Internet security hole

SAN FRANCISCO — Researchers have pushed out a fix for a security flaw that affects as many as two-thirds of all Internet servers and could let hackers intercept encrypted traffic including email messages, banking information, usernames and passwords.

The flaw and the fix, which researchers disclosed on April 7, involves a two-year-old programming mistake in OpenSSL. OpenSSL is an open-source software that is widely used by Internet companies to secure traffic flowing between servers and users' computers. SSL refers to an encryption protocol known as Secure Sockets Layer.

The vulnerability, dubbed Heartbleed, was discovered by researchers from Google and Codenomicon, a security firm based in Finland, and reported to OpenSSL, according to a blog post from Codenomicon. It isn't known whether malicious hackers knew about the bug and were exploiting it, the researchers wrote.

The revelation comes at a time of mounting concern about hackers' capabilities following consumer data breaches at Target and Neiman Marcus Group and the spying scandal involving the National Security Agency.

People should change their passwords for sensitive sites to be on the safe side, said Zully Ramzan, chief technology officer of Elastica, a cyber-security firm.

"The one saving grace with this flaw is that it was relatively simple to spot and as a result very simple to fix," Ramzan wrote in an email Tuesday. "That said, OpenSSL is incredibly widespread. It's literally the most popular implementation of SSL on the planet. So any compromise in its security has far reaching implications."

OpenSSL runs on as many as 66 percent of all active sites on the Internet, though many large consumer sites aren't vulnerable to being exploited because they use specialized encryption equipment and software, the researchers wrote. A test site allows website administrators to check whether their properties are affected.

Google and Facebook said in e-mailed statements Tuesday that their properties aren't vulnerable to the flaw. Tests on the homepages of other large technology, e-commerce and banking companies including Microsoft, Amazon.com and Bank of America indicated they weren't vulnerable.

"The security of our users' information is a top priority," Google said in its statement. "We proactively look for vulnerabilities and encourage others to report them precisely so that we are able to fix them before they are exploited. We have assessed the SSL vulnerability and applied patches to key Google services."

In a statement, Facebook said it "added protections for Facebook's implementations of OpenSSL before this issue was publicly disclosed, and we haven't detected any signs of suspicious activity on people's accounts."

1
Text Only
Business & Technology
  • Earns United Continental [Duplicate] United Airlines posts 2Q profit, reversing 1Q loss CHICAGO (AP) — United Airlines is making money after a slow start to the year.The airline’s net income in the second quarter hit $789 million, topping Wall Street expectations and marking a turnaround from the first quarter when United was the only m

    July 25, 2014 1 Photo

  • GM profit 2Q falls 85% on recall costs DETROIT (AP) — Recall expenses chopped $1.5 billion from General Motors’ bottom line in the second quarter, as it added up the costs of repairs for nearly 30 million cars and set aside funds to compensate victims of small-car crashes.The automaker, w

    July 25, 2014

  • Taiwan plane crash photo Air travel a leap of faith for passengers WASHINGTON (AP) — Airline travel requires passengers to make a leap of faith, entrusting their lives to pilots, airlines, air traffic controllers and others who regulate air travel.Even after a week of multiple tragedies in worldwide aviation, “There

    July 25, 2014 1 Photo

  • Technology plays key part in battling police brutality (with VIDEO)

    Allegations of police brutality are nothing new -- as long as there has been law enforcement, citizens have registered claims that some officers cross the line. But in the last few years, the claims of excessive force are being corroborated with new technology from cell phone cameras, police dash-cams and surveillance videos. 

    July 24, 2014

  • Facebook continues moneymaking trend

    Facebook seems to have figured out - for now at least - the holy grail for all media right now: how to make money selling mobile ads.

    July 24, 2014

  • Has the iPad lost its swag?

    The company reported this week that sales of its sleek, pricey tablet were down 19 percent from last quarter and 9 percent year-over-year.

    CEO Tim Cook tried to reassure investors that Apple's new partnership with IBM to sell its devices to IBM's corporate customers will help make iPads ubiquitous in the workplace.

    July 24, 2014

  • Stewart McCaskill photo McCaskill settles into new role at shoe store CLINTON — An Oklahoma boy at heart, Stewart McCaskill is settling into Clinton and Brown’s Shoe Fit.The 35-year-old has worked with the Brown’s Shoe Fit company for seven years. His brother-in-law, who manages a Brown’s in Colorado, brought Stewart i

    July 24, 2014 1 Photo

  • Earns Mcdonalds [Duplicate] McDonald's profit slips; U.S. sales decline OAK BROOK, Ill. (AP) — McDonald’s Corp. said its profit slipped in the second quarter as sales in the U.S. continued to flag.The world’s biggest hamburger chain has been struggling to boost sales in its flagship market amid intensifying competition,

    July 23, 2014 1 Photo

  • SEC poised to end $1 a share for some money funds WASHINGTON (AP) — Regulators are expected to vote Wednesday to end a longtime staple of the investment industry — the fixed $1 share price for money-market mutual funds — at least for some money funds used by big investors.The idea is to minimize the

    July 23, 2014

  • China McDonald's KFC [Duplicate] China meat scandal hits Starbucks, Burger King BEIJING — A suspect meat scandal in China engulfed Starbucks and Burger King today and spread to Japan where McDonald’s said the Chinese supplier accused of selling expired beef and chicken had provided 20 percent of the meat in its chicken nuggets.C

    July 22, 2014 5 Photos

Facebook