Nearly 200,000 services are still at risk from the OpenSSL bug, with majority coming from the US
The bugs could help attackers steal login data or take control of servers
Researchers detail how DROWN can be used to decrypt communications on HTTPS-secure websites and urge server operators to update now
Figures from IoT search engine Shodan suggest not all devices have been patched while experts ponder whether Heartbleed will ever…
New version of OpenSSL arrives to address a single ‘high severity’ vulnerability
OpenSSL patch will fix 'high severity' vulnerability, but no other details are known
BLOG: In the year since Heartbleed's discovery, there is more scrutiny than ever on OpenSSL and critical infrastructure overall.
TrustedSec says hackers got into Community Health Systems database through unpatched Juniper equipement
The random number generator in the library that's meant to replace OpenSSL was not really random
Google isn't changing the world with BoringSSL, it's just creating its own version of OpenSSL for its own products
New flaws in OpenSSL detected and quickly patched to prevent another Heartbleed vulnerability
Thanks to Heartbleed open source software will be better engineered and more secure, says Steve Nice, CTO at Reconnix
Companies including Amazon, Cisco and Google are contributing to an initiative that will target underfunded open source projects such as…
Updates have reduced the number of vulnerable apps, but millions still running flawed software on Android
The Heartbleed OpenSSL flaw is fixed on websites - but security firms have spotted attacks on SSL VPNs, warns Sean…
The Office of the Director of National Intelligence says disclosing the vulnerability would be “in the national interest”
BlackBerry works on Heartbleed patches for some services, but says its own handsets, BES 10 and its infrastructure aren't affected