Correspondent, Boston
Jim's Feed
Apr 14, 2014
Apr 14, 2014
Apr 14, 2014

‘Heartbleed’ blamed in attack on Canada tax agency, more expected

BOSTON/OTTAWA (Reuters) – Canada’s tax-collection agency on Monday said the private information of about 900 people had been compromised as hackers exploited the “Heartbleed” bug, and security experts warned that more attacks are likely to follow.

The breach allowed hackers to extract social insurance numbers, which are used for employment and gaining access to government benefits, and possibly some other data, the Canada Revenue Agency said.

Apr 13, 2014
Apr 13, 2014

Blackberry plans Heartbleed patches as mobile threat scrutinized

BOSTON (Reuters) – BlackBerry Ltd said it plans to release security updates for messaging software for Android and iOS devices by Friday to address vulnerabilities in programs related to the “Heartbleed” security threat.

Researchers last week warned they uncovered Heartbleed, a bug that targets the OpenSSL software commonly used to keep data secure, potentially allowing hackers to steal massive troves of information without leaving a trace.

Apr 11, 2014

U.S. government says hackers trying to exploit ‘Heartbleed’ bug

BOSTON, April 11 (Reuters) – The U.S. Government warned on
Friday that hackers are attempting to exploit the ‘Heartbleed’
bug in targeted attacks by scanning networks to see if they are
vulnerable.

It asked organizations to report any Heartbleed-related
attacks to the Department of Homeland Security, on a website
that it uses to advise critical infrastructure operators about
emerging cyber threats.

Apr 11, 2014
Apr 10, 2014

‘Heartbleed’ computer bug threat spreads to firewalls and beyond

BOSTON, April 10 (Reuters) – Hackers could crack email
systems, security firewalls and possibly mobile phones through
the “Heartbleed” computer bug, according to security experts who
warned on Thursday that the risks extended beyond just Internet
Web servers.

The widespread bug surfaced late on Monday, when it was
disclosed that a pernicious flaw in a widely used Web encryption
program known as OpenSSL opened hundreds of thousands of
websites to data theft. Developers rushed out patches to fix
affected web servers when they disclosed the problem, which
affected companies from Amazon.com Inc and Google Inc
to Yahoo Inc.

Apr 10, 2014
Apr 9, 2014

Little Internet users can do to thwart ‘Heartbleed’ bug

BOSTON, April 9 (Reuters) – Security experts warn there is
little Internet users can do to protect themselves from the
recently uncovered “Heartbleed” bug that exposes data to
hackers, at least not until vulnerable websites take steps to
secure their communications.

The Heartbleed bug in widely used web encryption technology
known as OpenSSL affects software on servers that host websites.
That software is not used on PCs or mobile devices, so even
though the bug exposes passwords and other data entered on those
devices to hackers, it must be fixed by website operators.

    • About Jim

      "Jim works in the Reuters Boston bureau covering cyber security, hacking and technology privacy issues. He’s been with Reuters since 2005. He previously covered technology, media and biotechnology for Broadcasting & Cable, the Orange County Register and Bloomberg News out Tokyo, Taipei, San Francisco, Los Angeles and Santa Ana, California."
      Joined Reuters:
      2005
      Languages:
      English, Mandarin
    • More from Jim

    • Contact Jim

    • Follow Jim