Akamai Admits Its Heartbleed Patch Was Faulty, Has To Reissue All SSL Certs And Keys

Akamai, which many large companies rely on for hosting as a CDN, has admitted that its Heartbleed patch was faulty.
Akamai Admits Its Heartbleed Patch Was Faulty, Has To Reissue All SSL Certs And Keys

Via Techdirt:

The web is a dangerous place these days. Akamai, which many large companies rely on for hosting as a CDN, has admitted that its Heartbleed patch was faulty, meaning that it was possible that the SSL keys "could have been exposed to an adversary exploiting the Heartbleed vulnerability." Akamai had already noted that it was more protected against Heartbleed than others, because of custom code it had used for its own OpenSSL deployment. However, as researchers looked through that custom code, they found some significant defects in it. Some people have been arguing that the Heartbleed bug highlig

Continue reading...


About Susie Madrak

Comments

We welcome relevant, respectful comments. Please refer to our Terms of Service for information on our posting policy.