Heartbleed flaw described as 'catastrophic' by experts: 'On the scale of 1 to 10, this is an 11'

Damage from the recently discovered flaw is impossible to assess, although most major companies have already secured their websites

A software bug that has gone unnoticed for two years has exposed sensitive data in as many as two out of every three web servers, say researchers.

The ‘heartbleed’ bug is a flaw in the widely-used web encryption software known as OpenSSL. Google, Facebook and Yahoo are some of the major companies that use SSL technology – most recognisable to users as the padlock that appears in the address bar of your browser.

Bruce Schneier, a security expert who has been covering the industry for years, described the flaw as 'catastrophic': "On the scale of 1 to 10, this is an 11," wrote Schneier in a blog post.

Since the flaw was discovered by researchers from Google and Finnish security group Codenomicon, webmasters have scrambled to update their software and protect users’ data, although some researchers warn that it is already too late.

The bug allowed attackers to pull random chunks of information from the memory of a server, meaning that everything from passwords and usernames to credit card numbers and home addresses could have been taken. As many as half a million websites are thought to have been affected.

The padlock in browser used to signal that HTTPS encryption is being used has been unsafe for more than two years.

The scale of the damage might never be known but the bug is thought to be the most serious uncovered in recent years. Some websites are encouraging users to change their passwords while others are advising that until they have confirmed that the bug has been fixed, changing passwords will do nothing.

Other security researchers have given more practical advice: “If you need strong anonymity or privacy on the Internet, you might want to stay away from the Internet entirely for the next few days while things settle.”

Google says that it has already “applied patches to key Google services” while Yahoo says that it has “made the appropriate corrections across the main Yahoo properties”. Facebook too, says that it has addressed the issues

Unfortunately, there’s not much that individual users can do to protect against ‘heartbleed’ – the responsibility is with the companies tasked with operating individual websites.

PROMOTED VIDEO
Life and Style
ebookNow available in paperback
ebooks
ebookPart of The Independent’s new eBook series The Great Composers
Life and Style
life
News
news

The party's potential nominations read like a high school race for student body president

Voices
A mother and her child
voices
Voices
The veterans Mark Hayward, Hugh Thompson and Sean Staines (back) with Grayson Perry (front left) and Evgeny Lebedev
charity appealMaverick artist Grayson Perry backs our campaign
Arts and Entertainment
Cold case: Aaron McCusker and Christopher Eccleston in ‘Fortitude’
tvReview: Sky Atlantic's ambitious new series Fortitude has begun with a feature-length special
Voices
Three people wearing masks depicting Ed Miliband, David Cameron and Nick Clegg
voicesPolitics is in the gutter – but there is an alternative, says Nigel Farage
News
i100
News
people
Sport
Chelsea manager Jose Mourinho
footballI have never seen the point of lambasting the fourth official, writes Paul Scholes
Life and Style
Vote green: Benoit Berenger at The Duke of Cambridge in London's Islington
food + drinkBanishes thoughts of soggy school dinners and turn over a new leaf
News
Joel Grey (left) poses next to a poster featuring his character in the film
peopleActor Joel Grey comes out at 82
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

ES Rentals

    iJobs Job Widget
    iJobs Gadgets & Tech

    Ashdown Group: IT Support Analyst - London - £43,000

    £35000 - £43000 per annum + Benefits: Ashdown Group: Senior IT Support Analyst...

    Ashdown Group: Senior Network Engineer - London - £70,000

    £60000 - £70000 per annum + benefits: Ashdown Group: An excellent opportunity ...

    Ashdown Group: Senior Systems Administrator - London - £50,000

    £40000 - £50000 per annum + benefits: Ashdown Group: Senior Systems Administra...

    Ashdown Group: Application Support Analyst- (Customer Support) - £29,000

    £29000 per annum: Ashdown Group: Application Support Analyst- (Customer Suppor...

    Day In a Page

    Isis hostage crisis: The prisoner swap has only one purpose for the militants - recognition its Islamic State exists and that foreign nations acknowledge its power

    Isis hostage crisis

    The prisoner swap has only one purpose for the militants - recognition its Islamic State exists and that foreign nations acknowledge its power, says Robert Fisk
    Missing salvage expert who found $50m of sunken treasure before disappearing, tracked down at last

    The runaway buccaneers and the ship full of gold

    Salvage expert Tommy Thompson found sunken treasure worth millions. Then he vanished... until now
    Homeless Veterans appeal: ‘If you’re hard on the world you are hard on yourself’

    Homeless Veterans appeal: ‘If you’re hard on the world you are hard on yourself’

    Maverick artist Grayson Perry backs our campaign
    Assisted Dying Bill: I want to be able to decide about my own death - I want to have control of my life

    Assisted Dying Bill: 'I want control of my life'

    This week the Assisted Dying Bill is debated in the Lords. Virginia Ironside, who has already made plans for her own self-deliverance, argues that it's time we allowed people a humane, compassionate death
    Move over, kale - cabbage is the new rising star

    Cabbage is king again

    Sophie Morris banishes thoughts of soggy school dinners and turns over a new leaf
    11 best winter skin treats

    Give your moisturiser a helping hand: 11 best winter skin treats

    Get an extra boost of nourishment from one of these hard-working products
    Paul Scholes column: The more Jose Mourinho attempts to influence match officials, the more they are likely to ignore him

    Paul Scholes column

    The more Jose Mourinho attempts to influence match officials, the more they are likely to ignore him
    Frank Warren column: No cigar, but pots of money: here come the Cubans

    Frank Warren's Ringside

    No cigar, but pots of money: here come the Cubans
    Isis hostage crisis: Militant group stands strong as its numerous enemies fail to find a common plan to defeat it

    Isis stands strong as its numerous enemies fail to find a common plan to defeat it

    The jihadis are being squeezed militarily and economically, but there is no sign of an implosion, says Patrick Cockburn
    Virtual reality thrusts viewers into the frontline of global events - and puts film-goers at the heart of the action

    Virtual reality: Seeing is believing

    Virtual reality thrusts viewers into the frontline of global events - and puts film-goers at the heart of the action
    Homeless Veterans appeal: MP says Coalition ‘not doing enough’

    Homeless Veterans appeal

    MP says Coalition ‘not doing enough’ to help
    Larry David, Steve Coogan and other comedians share stories of depression in new documentary

    Comedians share stories of depression

    The director of the new documentary, Kevin Pollak, tells Jessica Barrett how he got them to talk
    Has The Archers lost the plot with it's spicy storylines?

    Has The Archers lost the plot?

    A growing number of listeners are voicing their discontent over the rural soap's spicy storylines; so loudly that even the BBC's director-general seems worried, says Simon Kelner
    English Heritage adds 14 post-war office buildings to its protected lists

    14 office buildings added to protected lists

    Christopher Beanland explores the underrated appeal of these palaces of pen-pushing
    Human skull discovery in Israel proves humans lived side-by-side with Neanderthals

    Human skull discovery in Israel proves humans lived side-by-side with Neanderthals

    Scientists unearthed the cranial fragments from Manot Cave in West Galilee