NSA Said to Exploit Heartbleed Bug for Intelligence for Years by Michael Riley.
From the post:
The U.S. National Security Agency knew for at least two years about a flaw in the way that many websites send sensitive information, now dubbed the Heartbleed bug, and regularly used it to gather critical intelligence, two people familiar with the matter said.
The NSA’s decision to keep the bug secret in pursuit of national security interests threatens to renew the rancorous debate over the role of the government’s top computer experts.
Heartbleed appears to be one of the biggest glitches in the Internet’s history, a flaw in the basic security of as many as two-thirds of the world’s websites. Its discovery and the creation of a fix by researchers five days ago prompted consumers to change their passwords, the Canadian government to suspend electronic tax filing and computer companies including Cisco Systems Inc. to Juniper Networks Inc. to provide patches for their systems.
It was just earlier today in NSA … *ucked Up …TCP/IP that I pointed out:
If you aren’t worried about privacy, human rights, etc., let’s make it a matter of dollars and cents.
Think about the economic losses and expenses of your enterprise from an insecure Internet or the profits you could be making with a secure Internet.
The NSA has been at war against your commercial interests for as long as the Internet has existed. If you are serious about the Internet and information, then it is time to rid everyone of the #1 drag on ecommerce, the NSA.
There is no doubt the NSA has damaged the United States computer industry. Now we find the NSA endangering all commerce over the Internet.
The NSA is the largest threat the United States, its citizens and businesses have had to date.
Let’s end the NSA.