New OpenSSL exploit found (CVE-2014-0160)- called Heart Bleed

Many vendors have put out statements  for OpenSSL vulnerability (CVE-2014-0160):

This is a vulnerability in the encryption technology (OpenSSL) on websites and other systems. If you cannot safely access websites with encryption technologies it is a bad day on the Internet

isc  has a full list – list is increasing:

But most interesting (to me) is Cisco, Redhat and Checkpoint, as they are the lifeblood of Internet

Cisco – http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed

CheckPoint – https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk100173

Redhat – https://access.redhat.com/security/cve/CVE-2014-0160

 

Do your systems have this vulnerability?   we can scan and find out for you.  There are specific tools being developed by the hackers and good guys so as to attack/patch effectively.

We test and audit your environment to make you safer    (A – Σ – Ω)