Heartbleed is a programming error that leaves all forms of Internet data open to hackers. It was introduced into the OpenSSL software library by 31-year-old Robin Seggelmann, a Frankfurt, Germany developer. The Heartbleed bug seems focused on user data and hackers, it’s also possible that the server could extract personal user data from any client.

In other words, with the greater exchange of data between clients, servers, and normal users, data extraction is possible from any of these three mediums. A malicious server can do as much damage as a hacker if the Heartbleed bug is left unchecked.

Cloudflare claimed that its own researchers tried for two weeks (in vain) to access the private security keys – but one can never underestimate the skills of professional hackers. One of them, Fedor Indutny, posted his victory on Twitter Friday morning for all to see: “Just cracked @CloudFlare’s challenge: cloudflarechallenge.com/heartbleed. I wonder when they’ll update the page.”

The reports suggest the National Security Agency (NSA) was aware of the Heartbleed bug for at least two years but used it to gather intelligence on certain individuals under the government’s watchful eye. Edward Snowden is the American credited with revealing the NSA’s improper use of American data and personal information in recent months.

                              

Google mobile operating system Android is also affected by the Heartbleed bug, but only devices running on Android 4.1.1 Jelly Bean. In fact Apple tech writers started blogging about the bug and encouraged users to change their passwords at most of their websites immediately.

Two ways to protect from Heartbleed bug: -

• You can then change your usernames and passwords.
• If the website you use doesn’t install some sort of security patch to prevent possible hacker attacks.