• Home
  • Archive
  • Tools
  • Contact Us

The Customize Windows

Technology Journal

  • Cloud Computing
  • Computer
  • Digital Photography
  • Windows 7
  • Archive
  • Cloud Computing
  • Virtualization
  • Computer and Internet
  • Digital Photography
  • Android
  • Sysadmin
  • Electronics
  • Big Data
  • Virtualization
  • Downloads
  • Web Development
  • Apple
  • Android
Advertisement
You are here: Home » Heartbleed Was a Stranger Before Public Announcement

By Abhishek Ghosh September 16, 2014 7:29 am Updated on September 16, 2014

Heartbleed Was a Stranger Before Public Announcement

Advertisement

According to a recent study of OpenSSL Heartbleed, before it being revealed to the general public, it was unknown even to hackers. This is the conclusion which the participating researchers of some American University has reached the end of their latest study, it publicly available as PDF file :

Vim
1
https://jhalderm.com/pub/papers/heartbleed-imc14.pdf

The Heartbleed bug of OpenSSL, a widely used library in the network to protect sensitive data exchanged between client and server using encryption algorithms, remained stranger up to the day of reveal to the public (April 7, 2014). Their study concluded – “We investigated the attack landscape, finding no evidence of large- scale attacks prior to the public disclosure, but vulnerability scans began within 22 hours. We observed post-disclosure attackers employing several distinct types of attacks from 692 sources, many coming from Amazon EC2 and Chinese ASes. We also conducted a mass notification of vulnerable hosts, finding a significant positive impact on the patching of hosts to which we sent notifications, indi- cating that this type of notification helps reduce global vulnerability. Finally, we drew upon our analyses to frame what went well and what went poorly in our community™s response, providing perspectives on how we might respond more effectively to such events in the future.”

 

Heartbleed Was a Stranger Before Public Announcement – Neither a Good News, Nor a Bad News

 

The work of analyzing data (traffic in the months prior to April 2014), was carried out by the information acquired by the Lawrence Berkeley National Laboratory, the National Energy Research Scientific Computing Center and bait (called honeypot) placed in the Amazon EC2 network.

Advertisement

---

 

Heartbleed Was a Stranger Before Public Announcement

 

Between November 2013 and April 2014, scanners would not have identified any attempt to exploit for the flaw of OpenSSL. Researchers have, however, put forth stating other attempts might have occurred before the time frame they got data. The first official attack identified by the researchers occurred 21 hours and 29 minutes after the public announcement about Heartbleed. In the following days, the media outcry aroused by the affair helped to speed up the process of updating the library.

So, in our conclusion, it is quite practical, it can not be a fully white certificate because the traffic data, both in amount and time frame, is just a portion. vulnerability scans can be a result of activities by the White Hackers. This is definitely an important research work, because it simply emphasizes that Hearbleed bug must be fixed on any server, if still not fixed.

Tagged With heartbleed announcement

This Article Has Been Shared 655 Times!

Facebook Twitter Pinterest
Abhishek Ghosh

About Abhishek Ghosh

Abhishek Ghosh is a Businessman, Orthopaedic Surgeon, Author and Blogger. You can keep touch with him on Twitter - @AbhishekCTRL.

Here’s what we’ve got for you which might like :

Articles Related to Heartbleed Was a Stranger Before Public Announcement

  • Online Markdown Editor of Your Own : Again Full Cloud Based

    Online Markdown Editor of Your Own can be hosted on Dropbox or Rackspace Cloud Files as practically all the files – javascript, images, CSS are static files.

  • Which CDN is Best for Serving Static Contents and Streaming

    Which CDN is Best has one answer – Akamai. Akamai is the global standard and used by IBM to Microsoft. You have to find someone using their infrastructure.

  • Myths About Private Cloud

    Myths About Private Cloud decreases the chance of expandability for a company or an organization.Both public and hybrid cloud computing can be used selectively.

  • New Trends in Cloud Computing

    New trends in cloud computing means, seeking some new way and finding the answer whether to use it. Cloud computing has become a real trend from the media hype. Cloud Computing is a good option when you know about the points on security, the definite flaws, the weaker sides. There are three related article which […]

  • Cloud computing is Not Equal to the Future of Computing

    Cloud computing is Not Equal to the Future of Computing. Cloud Computing is an marketing term which is closer to the technology of grid computing since decades.

Additionally, performing a search on this website can help you. Also, we have YouTube Videos.

Take The Conversation Further ...

We'd love to know your thoughts on this article.
Meet the Author over on Twitter to join the conversation right now!

If you want to Advertise on our Article or want a Sponsored Article, you are invited to Contact us.

Contact Us

Subscribe To Our Free Newsletter

You can subscribe to our Free Once a Day, Regular Newsletter by clicking the subscribe button below.

Click To Subscribe

Please Confirm the Subscription When Approval Email Will Arrive in Your Email Inbox as Second Step.

Search this website…

 

Popular Articles

Our Homepage is best place to find popular articles!

Here Are Some Good to Read Articles :

  • Cloud Computing Service Models
  • What is Cloud Computing?
  • Cloud Computing and Social Networks in Mobile Space
  • ARM Processor Architecture
  • What Camera Mode to Choose
  • Indispensable MySQL queries for custom fields in WordPress
  • Windows 7 Speech Recognition Scripting Related Tutorials

Social Networks

  • Pinterest (20K Followers)
  • Twitter (4.9k Followers)
  • Facebook (5.8k Followers)
  • LinkedIn (3.7k Followers)
  • YouTube (1.2k Followers)
  • GitHub (Repository)
  • GitHub (Gists)
Looking to publish sponsored article on our website?

Contact us

Recent Posts

  • How To Repack Installed Software on Debian/Ubuntu January 16, 2021
  • Components of Agile Software Development January 15, 2021
  • What is Conway’s Law? January 14, 2021
  • Effects of Digitization on Companies : Part XIII January 13, 2021
  • What is SoftAP Mode? January 12, 2021

 

About This Article

Cite this article as: Abhishek Ghosh, "Heartbleed Was a Stranger Before Public Announcement," in The Customize Windows, September 16, 2014, January 17, 2021, https://thecustomizewindows.com/2014/09/heartbleed-stranger-public-announcement/.

Source:The Customize Windows, JiMA.in

 

This website uses cookies. If you do not want to allow us to use cookies and/or non-personalized Ads, kindly clear browser cookies after closing this webpage.

Read Cookie Policy.

PC users can consult Corrine Chorney for Security.

Want to know more about us? Read Notability and Mentions & Our Setup.

Copyright © 2021 - The Customize Windows | dESIGNed by The Customize Windows

Copyright  · Privacy Policy  · Advertising Policy  · Terms of Service  · Refund Policy