Klaiber Posted April 9, 2014 Report Share Posted April 9, 2014 Hey Guys, Just a heads up regarding a security hole that's been discovered: http://gizmodo.com/heartbleed-why-the-internets-gaping-security-hole-is-1560812671 And here is a list of vulnerable and not vulnerable sites: https://github.com/musalbas/heartbleed-masstest/blob/master/top1000.txt I'm posting this only because I saw that steamcommunity.com was listed as vulnerable. As a result, you may want to change your password. Though, based on what I can find, there is no way to tell if your information has already been compromised. Quote Link to comment Share on other sites More sharing options...
Klaiber Posted April 9, 2014 Author Report Share Posted April 9, 2014 According to Valve, they've fixed the heartbleed vulnerability with Steam. But they recommend you change passwords: http://www.incgamers.com/2014/04/heartbleed-vulnerabilities-steam-resolved-say-valve Quote Link to comment Share on other sites More sharing options...
Britchot Posted April 9, 2014 Report Share Posted April 9, 2014 Thanks for the heads up, Klai. Quote Link to comment Share on other sites More sharing options...
Spies Posted April 9, 2014 Report Share Posted April 9, 2014 That is a bug found in openssl, it wasn't the first and it will not be the last. How do you think that the NSA can read everything? Last month there was a bug in iOS that allowed encrypted connections to be attacked. The bug was so stupid and just shows how Apple doesn't care about security. Yes, if you used home banking or any other kinds of "secure??" connection in iOS, someone could have been watching everything that you did. Make sure you don't use the same password for more than one service and that you have a way to recover any password, there is always the risk of an account being compromised and by using different passwords, you minimize the risk of losing more than one access. IE: if you use the same password for steam and your email account and someone finds out the password that your are using, they can try to login into your email account using the steam password, if both passwords are changed, you will be locked out of both. Quote Link to comment Share on other sites More sharing options...
Klaiber Posted April 11, 2014 Author Report Share Posted April 11, 2014 http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/ Quote Link to comment Share on other sites More sharing options...
Klaiber Posted April 11, 2014 Author Report Share Posted April 11, 2014 Btw: if you want to test a website for vulnerability, you can go here: http://filippo.io/Heartbleed/ Quote Link to comment Share on other sites More sharing options...
Spies Posted April 11, 2014 Report Share Posted April 11, 2014 http://www.bloomberg.com/news/2014-04-11/nsa-said-to-have-used-heartbleed-bug-exposing-consumers.html Quote Link to comment Share on other sites More sharing options...
Klaiber Posted April 11, 2014 Author Report Share Posted April 11, 2014 Btw: I was curious where the logo came from for heartbleed, so I googled it: http://abcnews.go.com/Business/curious-business-naming-security-bug/story?id=23280245 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.