The Heartbleed Bug

by Alicia Holbrook

 

The Heartbleed bug has drawn our attention to the security of passwords our clients and our own networks. It’s good practice to change passwords regularly, Microsoft recommends users change their passwords every 30 to 90 days. Phrases like 550greenbottles are more memorable than a jumble of letters and numbers, and it is important to avoid any passwords which are personally related to you such as family or pet names.

The Heartbleed bug is so serious it even has its own website - www.heartbleed.com. The bug allows anyone on the internet to read the memory of the systems protected by vulnerable versions of OpenSSL software which includes Apache and nginx. This may result in data being stolen and the posibility to impersonate users. The hacker can access your data without leaving a trace. It is estimated that two-thirds of all websites are vulnerable and half a million sites are thought to have been affected.

Mashable have compiled a list of affected social media sites which includes Instagram, Pinterest and Tumblr.

 

How safe are your passwords?

A survey last year by mobile software developers SpashData revealed these were the Top 25 most common passwords. If you use one of these we would suggest changing them immediately.

Rank

Password

Change

1

123456

+1

2

password

-1

3

12345678

Unchanged

4

qwerty

+1

5

abc123

-1

6

123456789

New

7

111111

+2

8

1234567

+5

9

iloveyou

+2

10

adobe123

New

11

123123

+5

12

admin

New

13

1234567890

New

14

letmein

- 7

15

photoshop

New

16

1234

New

17

monkey

-11

18

shadow

Unchanged

19

sunshine

- 5

20

12345

New

21

password1

+4

22

princess

New

23

azerty

New

24

trustno1

-12

25

0

New