Heartbleed image via Shutterstock
The IT world (and the world in general) has been abuzz over the Heartbleed bug that may have affected over 500,000 Internet sites. To help you keep up with all the news, information, and fallout from the bug, we’ve gathered all the cruical information you need to know about Heartbleed.
What’s this all about?
- OpenSSL vulnerability ‘Heartbleed’ may have exposed encrypted traffic - The researchers who discovered the ‘Heartbleed’ OpenSSL vulnerability say it could have exposed encrypted Internet traffic for millions of systems.
- ‘Heartbleed’ bug strikes, personal identifiable information bleeds out – It’s not just about websites; Heartbleed could affect all sorts of systems, from cable boxes to IT equipment (and they could’ve been vulnerable for more than two years).
Who’s been affected so far?
- Mumsnet becomes first known UK victim of Heartbleed bug – The parenting website Mumsnet became the first known UK victim of the Heartbleed bug after the site believed hackers could steal passwords and messages from its 1.5 million users.
- Cisco and Juniper warn of products hit by Heartbleed bug – Cisco and Juniper have issued security bulletins warning that some of their products are vulnerable to the Heartbleed bug.
- Canada Revenue agency reports Heartbleed data theft – The Canada Revenue Agency reports that attackers exploiting the Heartbleed bug have stolen the social insurance numbers of 900 Canadians from the agency’s website.
- The Heartbleed OpenSSL vulnerability may pose risk to Android users - Millions of Android devices may be vulnerable to the bug, but experts say the actual risk to Android users remains unclear at this stage.
What has been done to respond?
- The Heartbleed genie is out of the bottle – now what? – Now that the details of Heartbleed are public, anyone can use it against vulnerable servers. What should be done?
- Heartbleed repairs threaten to cripple the Internet – The internet could slow to a crawl as companies scramble to fix the Heartbleed bug, security experts warn.
- ‘Heartbleed’ OpenSSL vulnerability: A slow-motion train wreck – As organizations continue their efforts on repairing the “Heartbleed” OpenSSL vulnerability, one security expert believes the extent of the damage done won’t be known for quite some time.
- Heartbleed denial reveals loophole for NSA spying – Even though the NSA has denial allegations that it knew of or exploited the Heartbleed bug, government officials revealed a loophole that would allow for such actions.
- Both attackers, researchers exploit Heartbleed OpenSSL vulnerability – Proving the Heartbleed OpenSSL vulnerability can be exploited in the wild, two organizations say attackers have used it to glean sensitive data.
- Tests prove Heartbleed bug exposes OpenVPN private keys – More exploits confirmed, this time with VPN servers running the OpenVPN application.
What do you think? Share your thoughts in the discussions below:
- What is your organization’s plan to defend against the wide-ranging Heartbleed OpenSSL vulnerability?
- Why did it take researchers so long to find the bug?
- Is the Heartbleed bug an augur of Internet security troubles to come?
Post-it image via Shutterstock
Post-it notes: the future of data storage? That’s the topic of our top blog post for the month of March. Come check out the top stories and share your thoughts with the community.
- ‘dataSTICKIES’? Sure! Let’s store 32 GB of data on a strip of scotch tape! by Sharon Fisher (Yottabytes: Storage and Disaster Recovery)
- On tech safety by Matt Heusser (Uncharted Waters)
- NetApp plans more cuts as market share drops by Dave Raffo (Storage Soup)
- Learning cloud has never been easier by Brian Gracely (From Silos to Services: Cloud Computing for the Enterprise)
- Microsoft, Nokia and the struggle for marketshare by Ron Miller (View From Above)
- The communication deficit in the airline industry by Denny Cherry (SQL Server with Mr. Denny)
- Win 8.1 Update 1 released to mfgrs (RTM) by Ed Tittel (Windows Enterprise Desktop)
- Microsoft finally readies Office for iPad…two years too late by Ron Miller (View From Above)
- Windows 8.1 spring 2014 update files “leak” by Ed Tittel (Windows Enterprise Desktop)
- Tintri moves into VMware’s vSphere by Dave Raffo (Storage Soup)
Winning image via Shutterstock
Ladies and gentlemen…we have a winner! After a grueling month of answering questions, commenting on discussions, and posting blog comments, ITKE user Genderhayes has won the $100 Amazon gift card with a whopping 2,115 points. Thanks to everyone who participated in our giveaway and look out for our next contest in May (HINT: It may have a “discussion” type feel to it).
Leaderboard image via Shutterstock
Heading into the final round of our giveaway contest, we have a new leader! ITKE user Genderhayes has made a charging run at the leaders and is winning as of today. Here are the current standings:
- Genderhayes: 1,115 points
- CharlieBrowne: 955 points
- Subhendu Sen: 500 points
- AndreaF: 450 points
- Jinteik: 405 points
Leaderboard image via Shutterstock
As we go along with our golf tournament theme, we wanted to bring you our latest “Round 2″ updates with our giveaway contest. Heading into today, here are the standings:
- CharlieBrowne: 660 points
- AndreaF: 440 points
- Jinteik: 325 points
- Kevin Beaver: 230 points
- Subhendu Sen: 220 points
With just over two weeks left to spare, the time to make your move is now! And how can you do that? By racking up those points.
Leaderboard image via Shutterstock
Just like in a golf tournament, everyone is keeping a watchful eye on the leaderboard to see who’s winning our giveaway contest. It’s a tight race through the first 11 days of March and it’s anyone’s game. Here are the standings:
- Jinteik: 215 points
- CharlieBrowne: 160 points
- Kevin Beaver: 125 points
- AndreaF: 115 points
- Subhendu Sen: 110 points
But don’t worry, there’s plenty of time to make your move to the top of the leaderboard so start piling up the points.
Today, we’ve made it easier for you to get updates on the community content you care about most.
As you’ve probably noticed, all content on IT Knowledge Exchange includes descriptive tags that make it simpler to find discussions that are relevant to you among the thousands happening on the site and around the TechTarget network.
This database of tags, and the content they cover, is constantly growing and evolving along with the industry as a whole. We’re always working to make sure that they’re organized so that you can find what you’re looking for quickly. We now have over 30 parent topics – from Business Intelligence to Consumerization, from Email Administration to Systems Management — that you can browse to find just the questions and discussions you are interested in.
But we know you’re busy and don’t always have time to click through page upon page of discussions. Now, when you find content you’re interested in, you can subscribe to email notifications on that and related topics with just one click.
Here’s how it works:
Hover over any tag on a question, discussion, or tag page.
Click the “Follow” button that appears. If you are logged in, that’s all you have to do (if not, you’ll be prompted to do so). You will see a confirmation that you’re following that topic.
You’ll soon begin getting daily email notifications (no more than one per day) on all content related to that topic, like the example below.
Try it out and see how easy it is. Note that this new system replaces the previous tag alerts we were sending; if you were previously receiving those, you should beg to receivine these new emails (again, one per topic per day). Because some additional topics have been added, you will want to check the site so that you can be sure you’ll get info on everything you care about.
You can unsubscribe at any time via a link at the bottom of the email, without affecting any other subscriptions. You can also manage your topic subscriptions on the confirmation page that appears after you ask a question or submit a discussion.
Contest image via Shutterstock
Whether it’s St. Patrick’s Day or March Madness, the month of March has something for everyone. Here at IT Knowledge Exchange, we wanted to add something to the mix by hosting our first giveaway of the year. Throughout the month, the person with the most ITKE points in March will receive a $100 Amazon gift card! So whether it’s asking a question, commenting on a discussion, or even publishing a comment on a blog post, all of your points will count. At the end of the month, the user with the most points will win the gift card. Simple enough, right? So it’s time to stop reading this post and get started on totaling up those points. Good luck!
Storage image via Shutterstock
Whether it was the shortcomings of physical storage or the Windows 9 rumor mill, our IT Knowledge Exchange bloggers had plenty to talk about in February’s top blog posts. Check out their stories and share your thoughts with the community.
- Another Iron Mountain fire points up shortcomings of physical storage by Sharon Fisher (Yottabytes: Storage and Disaster Recovery)
- VMware’s picking its storage friends more carefully by Dave Raffo (Storage Soup)
- Operating systems get less important every day by Robin Miller (Cheap Computing)
- Windows 9 rumors heating up: RC this September by Ed Tittel (Windows Enterprise Desktop)
- Update your iOS to 7.06 on iPad and iPhone by Ken Harthun (Security Corner)
- Tech education: Or how to get a job quick! by Justin Rohrman (Uncharted Waters)
- How wearable technology like Google Glass challenges e-discovery by Sharon Fisher (Yottabytes: Storage and Disaster Recovery)
- The 2 really dumb IT mistakes Scott Walker and staff made by Sharon Fisher (Yottabytes: Storage and Disaster Recovery)
- Nadella’s mobile nightmare: iOS and Android accounted for 93.8 percent of smartphone shipments in 2013 by Ron Miller (View From Above)
- SkyDrive is now OneDrive by Ed Tittel (Windows Enterprise Desktop)
Steve Jobs image via Shutterstock
Even though he’s gone, Steve Jobs is still making headlines throughout the industry and even in our top blog posts for the month of January! Check out why he’s still creating noise and share your thoughts with the community.
- Wozniak (Finally!) comments on Steve Jobs by Matt Heusser (Uncharted Waters)
- Why Google gives Android away by Ron Miller (View From Above)
- Thieves use thumb drives to rob ATMs by Sharon Fisher (Yottabytes: Storage and Disaster Recovery)
- Why I’m becoming obsessed with Android by Robin Miller (Cheap Computing)
- One word for software quality engineers in 2014 – “Continuous” by James Denman (Software Quality Insights)
- Better Windows 8.1 tablet options for business use by Ed Tittel (Windows Enterprise Desktop)
- Convergence startup Nutanix makes investors hyper, pulls in $101 million in funding by Dave Raffo (Storage Soup)
- Why the ‘Confide’ app should scare the crap out of you by Sharon Fisher (Yottabytes: Storage and Disaster Recovery)
- Seems Apple can’t win for losing by Ron Miller (View From Above)
- Does VMware need a vOpenStack offering? by Brian Gracely (From Silos to Services: Cloud Computing for the Enterprise)