Printed from http://www.electronista.com

Heartbleed vulnerability still found in over 300,000 SSL servers

updated 07:45 pm EDT, Thu May 8, 2014

Researcher finds decrease in vulnerable systems from previous month

Security researcher Robert Graham announced on the Errata Security blog that over 300,000 servers remain vulnerable to the Heartbleed bug, according to a recent scan done of Internet systems. The number marks a decrease from the previous month's scan, which numbered over 600,000 systems.

Graham found the number by running an open scan on port 443 on IPv4 addresses in order to get an estimate of systems that have yet to address the heartbeat exploit in OpenSSL. During the scan, Graham had only found 22 million systems confirming support of SSL. The previous scan had produced 28 million systems with an SSL handshake.

The scan also produced 1.5 million systems that supported the heartbeat protocol, yet Graham's previous scan produced only 1 million systems that were supporting the feature. While the number of systems using the protocol increased, the percentage of systems still vulnerable to exploits by the Heartbleed bug have drastically decreased from roughly 60 to 20 percent. According to Graham, the reasoning behind the scan results increasing are that "the first response of the bug was to disable heartbeats, then later when people correctly patched the software, heartbeats were re-enabled."

Even though a large majority of systems have been fixed since April when Heartbleed was at its peak, the new study shows a large number of services have still yet to take the concern seriously enough to attempt a fix. The numbers may be even larger, considering the results were based on a specific port and addressing set.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Advertisement

Recent Reviews

Brother HL-L8250CDN Color Laser Printer

When it comes to selecting a printer, it's not exactly something most people put a lot of thought into. Printers are often touted as f ...

Moshi iVisor AG and XT for iPad Air 2

Have you ever tried to put in a screen protector that relies on static to cling to the screen? How many bubbles and wrinkles does it h ...

Epson PowerLite Home Cinema 3500 projector

Trying to find the perfect projector for a home theater can be tricky, as there are bountiful options on the market from a large numbe ...

Advertisement

toggle

Most Commented

 
toggle

Popular News