Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Vulnerabilities

Heartbleed Bug Shutters More Canadian Gov’t Websites

OTTAWA – Canada’s government on Friday ordered all federal department websites vulnerable to the “Heartbleed” bug to be shut down.

OTTAWA – Canada’s government on Friday ordered all federal department websites vulnerable to the “Heartbleed” bug to be shut down.

“The chief information officer for the government of Canada issued a directive to all federal government departments to immediately disable public websites that are running unpatched OpenSSL software,” Treasury Board President Tony Clement said a statement.

“This action is being taken as a precautionary measure until the appropriate security patches are in place and tested.”

It is unclear how many government websites are affected, or how long they may be down.

The move comes two days after Canada’s tax agency shuttered its website, ahead of an April 30 annual income tax filing deadline.

The recently-discovered flaw in online-data scrambling software OpenSSL allows hackers to eavesdrop on online communications, steal data, impersonate websites and unlock encrypted data.

OpenSSL is commonly used to protect passwords, credit card numbers and other data sent via the Internet.

More than half of websites use the software, but not all versions have the same vulnerability, according to heartbleed.com.

Advertisement. Scroll to continue reading.

Cyber security firm Fox-It estimates that the vulnerability has existed for about two years, since the version of OpenSSL at issue was released.

Computer security specialists, website masters and others began fretting about the “Heartbleed” bug this week after several reports of hacking.

Related: Why The Heartbleed Vulnerability Matters and What To Do About It

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn how the LOtL threat landscape has evolved, why traditional endpoint hardening methods fall short, and how adaptive, user-aware approaches can reduce risk.

Watch Now

Join the summit to explore critical threats to public cloud infrastructure, APIs, and identity systems through discussions, case studies, and insights into emerging technologies like AI and LLMs.

Register

People on the Move

Checkmarx has appointed Scott Gainey as Chief Marketing Officer.

Jason Hogg has been named Executive Chairman of CYPFER.

HUB Cyber Security has appointed former PayPal and American Express executive Paul Parisi as its Global Chief Revenue Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.