We compiled a list of the top 100 sites across the Web, and checked to see if the Heartbleed bug was patched.
The Heartbleed bug is serious. Disclosed less than two days ago, the Heartbleed bug has sent sites and services across the Internet into patch mode.
For an in-depth explanation of what exactly Heartbleed is, and what it does, read this post by our own Stephen Shankland. In essence, the bug potentially exposed your username and password on sites like Facebook, Google, Pinterest, and more.
Using Alexa.com, we plan on going through the list of the top 100 sites in the U.S. and asking "Have you patched the Heartbleed bug yet?" Once we have an answer, we will fill in the chart below with the response.
While we wait to hear back, we will be testing the sites against the Qualys SSL Server Test. There may be some instances where the patch isn't detected, in which case we will mark the site as "be on alert." When a site is marked as such, you should proceed with caution. You should contact the site or company directly if you have any questions pertaining to your account security.
You may notice some companies will be marked as "Unexposed." In that case, the site in question does not use the type of OpenSSL encryption this bug was based on.
| Site | Qualys | Confirmation from site |
|---|---|---|
| Pass | Yes | |
| Pass | Yes | |
| YouTube | Pass | Yes |
| Yahoo! | Pass | Yes |
| Amazon | Pass | No |
| Wikipedia | Pass | Yes |
| Pass | Unexposed | |
| eBay | Pass | Unexposed |
| PayPal | Pass | Unexposed |
| Pass | Yes | |
| Chase | Pass | Yes |
| CNET | Pass | Yes |
| CBSSports | Pass | Yes |
| Pass | Unexposed | |
| Blogspot | Pass | Yes |
| Bing | Pass | Yes |
This list is going to be live and constantly updated; please return to view the latest information as we get it.
CNET's Seth Rosenblatt contributed to this report
via Technology - Google News http://ift.tt/1es3Tmn
Put the internet to work for you.
0 comments:
Post a Comment