How to Treat the Heartbleed Bug | Article
Information Security Media Group polled security experts in banking, government and healthcare, as well as the research and vendor communities, for insights on Heartbleed and how organizations should respond to it.
John LaCour of PhishLabs, an online security firm that tracks cyber-attacks, says the seriousness of the vulnerability cannot be overstated. “SSL is designed for the purpose of securing sensitive information like authentication credentials,” he says. “The Heartbleed vulnerability makes it possible for an attacker to compromise whatever it is that is meant to be protected and potentially all communications over SSL.”