AAPL Stock: 118.03 ( -0.85 )

Printed from

Heartbleed vulnerability still found in over 300,000 SSL servers

updated 07:45 pm EDT, Thu May 8, 2014

Researcher finds decrease in vulnerable systems from previous month

Security researcher Robert Graham announced on the Errata Security blog that over 300,000 servers remain vulnerable to the Heartbleed bug, according to a recent scan done of Internet systems. The number marks a decrease from the previous month's scan, which numbered over 600,000 systems.

Graham found the number by running an open scan on port 443 on IPv4 addresses in order to get an estimate of systems that have yet to address the heartbeat exploit in OpenSSL. During the scan, Graham had only found 22 million systems confirming support of SSL. The previous scan had produced 28 million systems with an SSL handshake.

The scan also produced 1.5 million systems that supported the heartbeat protocol, yet Graham's previous scan produced only 1 million systems that were supporting the feature. While the number of systems using the protocol increased, the percentage of systems still vulnerable to exploits by the Heartbleed bug have drastically decreased from roughly 60 to 20 percent. According to Graham, the reasoning behind the scan results increasing are that "the first response of the bug was to disable heartbeats, then later when people correctly patched the software, heartbeats were re-enabled."

Even though a large majority of systems have been fixed since April when Heartbleed was at its peak, the new study shows a large number of services have still yet to take the concern seriously enough to attempt a fix. The numbers may be even larger, considering the results were based on a specific port and addressing set.

by MacNN Staff



Login Here

Not a member of the MacNN forums? Register now for free.


Network Headlines

Follow us on Facebook


Most Popular


Recent Reviews

Ultimate Ears Megaboom Bluetooth Speaker

Ultimate Ears (now owned by Logitech) has found great success in the marketplace with its "Boom" series of Bluetooth speakers, a mod ...

Kinivo URBN Premium Bluetooth Headphones

We love music, and we're willing to bet that you do, too. If you're like us, you probably spend a good portion of your time wearing ...

Jamstik+ MIDI Controller

For a long time the MIDI world has been dominated by keyboard-inspired controllers. Times are changing however, and we are slowly star ...


Most Commented