Heartbleed

Heartbleed to blame for Community Health Systems breach

By Steve Ragan, CSO | August 19th, 2014 According to a blog post from TrustedSec, an information security consultancy in Ohio, the breach at Community Health Systems (CHS) is the result of attackers targeting a flaw OpenSSL, CVE-2014-0160, better known as Heartbleed. The incident marks the first case Heartbleed has been linked to an attack …

Heartbleed to blame for Community Health Systems breach Read More »

Heartbleed exposes weaknesses in hardware design

By Agam Shah, IDG News Service | August 15th, 2014 Heartbleed highlights memory and cache architecture weaknesses, but a DHS-funded project proposes changes. Heartbleed may have been a software bug, but it highlighted glaring weaknesses in existing hardware architectures, which remain vulnerable to memory-bound attacks, a university researcher said this week. Data is vulnerable to …

Heartbleed exposes weaknesses in hardware design Read More »

When is your infrastructure safe from Heartbleed?

By Antone Gonsalves, CSO | July 24th, 2014 Now that IT departments have fixed the Heartbleed bug in most internet-facing software, security pros have started debating the risk of not patching software buried deep in the data center. CloudPhysics, which performs storage analytics on virtualized environments within companies, says 57 percent of VMware vCenter v.5.5 …

When is your infrastructure safe from Heartbleed? Read More »