Assessing the Damage from Heartbleed - infoTECH Spotlight

»IT Home »Free Premium Content   Follow us on: 6/12/2014

Featured Articles » Continuous Database Monitoring is Key to Reducing Risk of National Retailer Breaches » Information Acceleration and Decision Making » SafeNet Unveils New High-Speed Encryption Solutions for Enterprises » Microsoft Hits Computex with Array of New Hardware   Sponsored By: DevCon5 HTML5 and Mobile App Developers Conference July 9-10, 2014 - New York City Register here DevCon5 HTML5 & Mobile App Developer Conference focuses on educating Web developers, designers, and architects on how to use HTML5 to create dynamic user experiences across multiple platforms. The conference focuses on the implementation and execution of HTML5, building new business models based on HTML5 mobile, cloud and ecommerce capabilities, security issues, Node.js, MongoDB, AngularJS, JavaScript and more. Attend DevCon5, July 9-10, at NYU’s Kimmel Center in NYC, and understand how HTML5, hybrid development and frameworks will be the guiding principles for the future of mobile app development. Hear from some of the most influential companies and names in the HTML5 world including Nickelodeon, Basho, Adobe, Intel, and more. Understand how HTML5 and the changing interaction between the browser and the server using CSS, JavaScript and mobile development tools will allow for the successful development and delivery of cutting edge mobile apps.   Top Stories » Firedrive Service is Now Enhanced with Mozilla Extension and Download as Zip Function » EnGenius Rolls Out Wireless AC Indoor and Outdoor Access Points » MSAB XRY Version 6.0 to Support Wide Array of Apps » External Disk Storage Sees Massive Q1 Revenue Drop for 2014   From The Expert Corner June 10, 2014 Assessing the Damage: Best Practices to Protect Against the Heartbleed Fallout By TMCnet Special Guest Kalle Jaaskelainen, vice president, product management and services, SSH Communications Security The recently announced vulnerability in OpenSSL, known as “Heartbleed,” is a serious flaw that not only affects the majority of web servers in the world, but also touches countless other applications that use the affected software. Because Heartbleed gives an attacker direct access to memory stored on the web server, it is possible that certificates, keys, passwords, financial information, personal consumer information and other sensitive data have been exploited. TLS is a widely used encryption protocol that is commonly utilized by webservers to protect sensitive information while in transit. Because Heartbleed allows an attacker to gain direct access to system memory – and because the logs would show nothing out of the ordinary – all of the data on the server may be compromised, making it difficult to know if an exploit has occurred in the first place. Because this vulnerability has been in existence for two years, organizations should assume that any system running vulnerable OpenSSL software might have been compromised. Read More    Featured Videos TMC Newsroom Interview with AARP Erik Linask speaks with Terry Bradwell, the EVP & CIO of AARP about his Keynote at ITEXPO Las Vegas 2014    Featured Resources » SIP, SBCs and Lync – The Knockout Punch for Productivity and Profitability » Identity Related Risks: What is the Real Insider Threat? » GARTNER RIGHTSIZING THE ENTERPRISE DATA CENTER NETWORK » OVERCOMING THE TOP 5 CORE NETWORK CHALLENGES   Featured Channels » Cloud Hosting » Google Apps - News » Application Deployment   InfoTechSpotlight.com is Your Source for the Latest IT News and Information   Sign Up For FREE    |    Visit IT Site    |    Free Magazine Subscription   Advertise With Us   General advertising Info: Click here    |    Request a Media Kit   Become a TMCnet columnist! Become a TMCnet columnist! Want to contribute your expertise to a growing audience of technology professionals? Become a writer, blogger or columnist for the TMCnet Web site and this newsletter. Contact TMCnet Group Editorial Director, Erik Linask, at elinask@tmcnet.com for details.

This email was distributed by: Technology Marketing Corporation, 800 Connecticut Avenue, Norwalk, CT 06854 As a valued reader or attendee of TMC's publications and events, you will occasionally receive carefully-screened offers and free product information via email. If you no longer wish to receive this type of email, please go to http://www.tmcnet.com/enews/subs.aspx?eml=ipat39@gmail.com to adjust your preferences.