• Home
  • Archive
  • Tools
  • Contact Us

The Customize Windows

Technology Journal

  • Cloud Computing
  • Computer
  • Digital Photography
  • Windows 7
  • Archive
  • Cloud Computing
  • Virtualization
  • Computer and Internet
  • Digital Photography
  • Android
  • Sysadmin
  • Electronics
  • Big Data
  • Virtualization
  • Downloads
  • Web Development
  • Apple
  • Android
Advertisement
You are here: Home » Heartbleed Was a Stranger Before Public Announcement

By Abhishek Ghosh September 16, 2014 7:29 am Updated on September 16, 2014

Heartbleed Was a Stranger Before Public Announcement

Advertisement

According to a recent study of OpenSSL Heartbleed, before it being revealed to the general public, it was unknown even to hackers. This is the conclusion which the participating researchers of some American University has reached the end of their latest study, it publicly available as PDF file :

Vim
1
https://jhalderm.com/pub/papers/heartbleed-imc14.pdf

The Heartbleed bug of OpenSSL, a widely used library in the network to protect sensitive data exchanged between client and server using encryption algorithms, remained stranger up to the day of reveal to the public (April 7, 2014). Their study concluded – “We investigated the attack landscape, finding no evidence of large- scale attacks prior to the public disclosure, but vulnerability scans began within 22 hours. We observed post-disclosure attackers employing several distinct types of attacks from 692 sources, many coming from Amazon EC2 and Chinese ASes. We also conducted a mass notification of vulnerable hosts, finding a significant positive impact on the patching of hosts to which we sent notifications, indi- cating that this type of notification helps reduce global vulnerability. Finally, we drew upon our analyses to frame what went well and what went poorly in our community™s response, providing perspectives on how we might respond more effectively to such events in the future.”

 

Heartbleed Was a Stranger Before Public Announcement – Neither a Good News, Nor a Bad News

 

The work of analyzing data (traffic in the months prior to April 2014), was carried out by the information acquired by the Lawrence Berkeley National Laboratory, the National Energy Research Scientific Computing Center and bait (called honeypot) placed in the Amazon EC2 network.

Advertisement

---

 

Heartbleed Was a Stranger Before Public Announcement

 

Between November 2013 and April 2014, scanners would not have identified any attempt to exploit for the flaw of OpenSSL. Researchers have, however, put forth stating other attempts might have occurred before the time frame they got data. The first official attack identified by the researchers occurred 21 hours and 29 minutes after the public announcement about Heartbleed. In the following days, the media outcry aroused by the affair helped to speed up the process of updating the library.

So, in our conclusion, it is quite practical, it can not be a fully white certificate because the traffic data, both in amount and time frame, is just a portion. vulnerability scans can be a result of activities by the White Hackers. This is definitely an important research work, because it simply emphasizes that Hearbleed bug must be fixed on any server, if still not fixed.

Tagged With heartbleed announcement

This Article Has Been Shared 623 Times!

Facebook Twitter Pinterest

Abhishek Ghosh

About Abhishek Ghosh

Abhishek Ghosh is a Businessman, Surgeon, Author and Blogger. You can keep touch with him on Twitter - @AbhishekCTRL.

Here’s what we’ve got for you which might like :

Articles Related to Heartbleed Was a Stranger Before Public Announcement

  • Online Markdown Editor of Your Own : Again Full Cloud Based

    Online Markdown Editor of Your Own can be hosted on Dropbox or Rackspace Cloud Files as practically all the files – javascript, images, CSS are static files.

  • Which CDN is Best for Serving Static Contents and Streaming

    Which CDN is Best has one answer – Akamai. Akamai is the global standard and used by IBM to Microsoft. You have to find someone using their infrastructure.

  • Myths About Private Cloud

    Myths About Private Cloud decreases the chance of expandability for a company or an organization.Both public and hybrid cloud computing can be used selectively.

  • New Trends in Cloud Computing

    New trends in cloud computing means, seeking some new way and finding the answer whether to use it. Cloud computing has become a real trend from the media hype. Cloud Computing is a good option when you know about the points on security, the definite flaws, the weaker sides. There are three related article which […]

  • Cloud computing is Not Equal to the Future of Computing

    Cloud computing is Not Equal to the Future of Computing. Cloud Computing is an marketing term which is closer to the technology of grid computing since decades.

Additionally, performing a search on this website can help you. Also, we have YouTube Videos.

Take The Conversation Further ...

We'd love to know your thoughts on this article.
Meet the Author over on Twitter to join the conversation right now!

If you want to Advertise on our Article or want a Sponsored Article, you are invited to Contact us.

Contact Us

Subscribe To Our Free Newsletter

Get new posts by email:

Please Confirm the Subscription When Approval Email Will Arrive in Your Email Inbox as Second Step.

Search this website…

 

Popular Articles

Our Homepage is best place to find popular articles!

Here Are Some Good to Read Articles :

  • Cloud Computing Service Models
  • What is Cloud Computing?
  • Cloud Computing and Social Networks in Mobile Space
  • ARM Processor Architecture
  • What Camera Mode to Choose
  • Indispensable MySQL queries for custom fields in WordPress
  • Windows 7 Speech Recognition Scripting Related Tutorials

Social Networks

  • Pinterest (24.3K Followers)
  • Twitter (5.8k Followers)
  • Facebook (5.7k Followers)
  • LinkedIn (3.7k Followers)
  • YouTube (1.3k Followers)
  • GitHub (Repository)
  • GitHub (Gists)
Looking to publish sponsored article on our website?

Contact us

Recent Posts

  • Projector Screen Basics February 6, 2023
  • What is Configuration Management February 5, 2023
  • What is ChatGPT? February 3, 2023
  • Zebronics Pixaplay 16 : Entry Level Movie Projector Review February 2, 2023
  • What is Voice User Interface (VUI) January 31, 2023

About This Article

Cite this article as: Abhishek Ghosh, "Heartbleed Was a Stranger Before Public Announcement," in The Customize Windows, September 16, 2014, February 6, 2023, https://thecustomizewindows.com/2014/09/heartbleed-stranger-public-announcement/.

Source:The Customize Windows, JiMA.in

PC users can consult Corrine Chorney for Security.

Want to know more about us? Read Notability and Mentions & Our Setup.

Copyright © 2023 - The Customize Windows | dESIGNed by The Customize Windows

Copyright  · Privacy Policy  · Advertising Policy  · Terms of Service  · Refund Policy

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Do not sell my personal information.
Cookie SettingsAccept
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT