https://www.yahoo.com/tech/heres-what-you-need-to-know-about-the-heartbleed-bug-82120054478.html
TL;DR: OpenSSL software has massive hole in it for 2 years, but has just been detected recently. [quote]Websites that are currently vulnerable to Heartbleed exploits include Yahoo, Comixology, Flickr, Imgur and OculusVR. Many other top sites — including Facebook, Google, Wikipedia, Amazon, Twitter, Apple and Microsoft — are not currently vulnerable, though some may have been in the past.[/quote]
what do you think of this? this affects most sites throughout the internet including banks, etc.
and to clarify Yahoo's main site is g2g, services like mail are not
http://www.forbes.com/sites/jameslyne/2014/04/08/heartbeat-heartbleed-bug-breaks-worldwide-internet-security-again-and-yahoo/
http://www.bostonglobe.com/business/2014/04/09/heartbleed-scare-bad-sounds/4KGq7KIffclo5Y4Eo80YTJ/story.html
update: forbes and boston globe link added
-
NSA's dreams, shattered.