This post was contributed by a community member. The views expressed here are the author's own.

Health & Fitness

Connecticut BBB Urges Businesses to Check for "Heartbleed" Virus

Security engineers discovered that the "Heartbleed" virus exploits a flaw in OpenSSL, which allowed them to view passwords and user names when they tested the virus.

Computer Malware Can Steal Consumers’ and Companies’ Private Information 

Connecticut Better Business Bureau is alerting business owners about a frightening computer virus that targets computer servers running the most widely-used internet encryption security system.

Security engineers discovered that the “Heartbleed” virus exploits a flaw in OpenSSL, which allowed them to view passwords and user names when they tested the virus.  Secure Sockets Layer (SSL) is an open-source software program that encrypts data over the internet.  It is used to secure business transactions, email, instant messaging services, social media sites and any other sort of web-based system that must secure the data that is transmitted to and from its servers. 

Find out what's happening in Hamdenwith free, real-time updates from Patch.

Once the specialists understood how it worked, they avoided publicizing the discovery until OpenSSL’s developers could create an update that eliminates the security loophole.

Yahoo was among the first-named websites where the Heartbleed virus was detected.  Yahoo and other major companies that rely on OpenSSL moved quickly to fix the vulnerability.  SSL is used on web servers, but not on PCs or mobile devices. 

Find out what's happening in Hamdenwith free, real-time updates from Patch.

The virus is believed to have originated two years ago, but researchers say it covered its tracks to leave no trace of its presence.  There is no word on how many servers were infected.

Connecticut BBB recommends businesses consult a qualified information technology (IT) professional, to see whether their servers are infected with the virus, and if so, remove it and apply the updated, secure version of OpenSSL.

Consumers and businesses should change their passwords, and regularly scan their computers with an updated computer security application.  In addition, install operating system updates and software patches, which often address emerging security flaws.   

-By Howard Schwartz, Executive Communications Director, Connecticut Better Business Bureau 

Do you like Connecticut Better Business Bureau posts?   If you don't want to miss any of our helpful posts, you can subscribe to our blog by clicking this link and then click "Get email updates," and our posts will arrive in your email. 

We’ve removed the ability to reply as we work to make improvements. Learn more here

The views expressed in this post are the author's own. Want to post on Patch?