(4/15/2014) Canada's tax-collection agency on Monday said the private information of about 900 people had been compromised as hackers exploited the "Heartbleed" bug, and security experts warned that more attacks are likely to follow.
(4/15/2014) A Bloomberg report says the agency knew about the Heartbleed security flaw that's sent sites like Google scrambling to patch their systems -- but it kept it secret and used it to spy. The agency, however, says that's not so.
(4/15/2014) "Trivial" coding error in open source project wasn't intentional, report says.
(4/14/2014) The Web infrastructure company's patch was supposed to have handled the problem. Turns out it protects only three of six critical encryption values.
(4/14/2014) A flaw in the most popular web encryption system could leave people vulnerable to data theft according to security researchers.More news...
University of Missouri policy mandates faculty and staff complete annual security awareness training. Please complete the designated SANS training modules in SANS Securing the Human. Please contact the UM Chief Information Security Officer with questions at email@example.com.
(4/9/2014) The University is vigilantly taking action to protect our systems and services; most companies are doing the same. While we cannot determine the scale of direct impact, a vast number of online services such as social media sites, e-commerce sites, software installation sites, et cetera use OpenSSL software to encrypt information.
(4/9/2014) A new OpenSSL vulnerability has shown up and some companies are annoyed that the bug was revealed before patches could be delivered for it. Updated April 8.
(4/16/2009) Advisory for Advisory- Cisco AnyConnect Virtual Private Network (VPN) application for iOS has been updated to address vulnerabilities related to the Heartbleed bug.