Video | Agriculture | Confidence | Economy | Energy | Employment | Finance | Media | Property | RBNZ | Science | SOEs | Tax | Technology | Telecoms | Tourism | Transport | Search

 


Heartbleed vulnerability major issue for website owners

Heartbleed vulnerability major issue for website owners

InternetNZ (Internet New Zealand Inc) and the New Zealand Internet Task Force (NZITF) are today warning website owners that their site’s security may have been breached and private information, including logons and passwords, may have been stolen after the HeartBleed vulnerability was identified in the last 24 hours.

InternetNZ CEO Jordan Carter said website owners are advised to check their sites and patch them where required. Individual users should change their passwords as a matter of course.

“Website owners shouldn’t panic, but quick action is required by those using vulnerable versions of OpenSSL,” said Mr Carter.

The vulnerability in OpenSSL software, commonly used to secure web sites, is easy to exploit and virtually impossible to detect when it has been exploited. Any web site using a vulnerable version of OpenSSL may have been attacked by criminals stealing data or eavesdropping on communications to and from the site. Now that this vulnerability is widely known the likelihood of criminals using this exploit are significantly higher.

To fix the vulnerability, website hosts are advised to follow the below list in the order provided:
1. Establish if your site’s servers are vulnerable. This can be done by visiting https://www.ssllabs.com/ssltest
2. Patch the vulnerable servers.
3. Revoke/reissue certificates. This is an extremely important step as the servers may have been compromised for some time, without detection.

Patching alone will reduce the risk of future data compromises, however it cannot protect data that has already been captured. As usual, individuals should have separate passwords for different log-ins, and InternetNZ and the NZITF recommend changing those passwords regularly.

InternetNZ is a charitable organisation that works for a better world through a better Internet. It strives to promote the benefits and uses of the Internet while protecting its potential. It does this by funding research and work to better the Internet, working with Government to ensure that legislation does not inhibit the Internet’s development and working with all stakeholders for an open and uncaptureable Internet.

The New Zealand Internet Task Force is a non-profit with the mission of improving the cyber security posture of New Zealand. It is a forum based on mutual trust for debate, networking, information sharing, and collaboration on matters relating to the cyber security of New Zealand.

For more information, visit InternetNZ or the NZITF’s website (www.internetnz.net.nz or www.nzitf.org.nz).

ENDS

© Scoop Media

 
 
 
 
 
Business Headlines | Sci-Tech Headlines

 

Finance: Major Campaign To End "Gross Overtaxation Of Savings"

The campaign – which includes a special web site through which New Zealanders can e-mail their own and other MPs and party leaders – is backed by Age Concern, Consumer NZ, the Financial Services Council and the Taxpayers’ Union. More>>

ALSO:

Scoop Business: Leighton-Led WGP To Build, Manage Transmission Gully

The Wellington Gateway Partnership, led by a unit of ASX-listed Leighton Holdings, has won the $1 billion contract to build the Transmission Gully road north of Wellington. More>>

ALSO:

Gareth Morgan: The Government’s Fresh Water Policy – Revisited

Fresh water quality is the latest area to be in the sights of Gareth Morgan and his research organisation The Morgan Foundation... They found that the fresh water policy was a bit murkier than the Environment Minister let on. More>>

ALSO:

Interest Rates: RBNZ Hikes OCR To 3.5%, ‘Period Of Assessment’ Now Needed

Reserve Bank governor Graeme Wheeler raised the official cash rate as expected, while signalling a pause in rate hikes to assess the impact of moves so far this year. The kiwi dollar sank after Wheeler said its strength was “unjustified” and that the currency could have “a significant fall.” More>>

ALSO:

Fonterra: Canpac Site 'Resize' To Focus More On Paediatrics

Fonterra is looking at realigning its packing operations at Canpac, in the Waikato, to focus more on paediatric nutritionals... The proposed changes could mean around 110 roles may not be required at the site which currently employs 330. More>>

ALSO:

Scoop Business: Postie Plus Brand Gets 2nd Chance With Well-Funded Pepkor

The Postie Plus brand is getting a new lease of life after South Africa’s Pepkor bought the failed retailer’s assets out of administration and said it will use its purchasing power to reduce costs of stock and fatten margins. More>>

ALSO:

Get More From Scoop

 
 
Computer Power Plus

Standards New Zealand

Standards New Zealand
 
 
 
 
 
 
 
 
Business
Search Scoop  
 
 
Powered by Vodafone
NZ independent news