Heartbleed bug not exploited before disclosure

No Comments

Heartbleed logo

The Heartbleed bug has gone down in history as one of the most serious flaws to affect the internet. But new research reveals that prior to its disclosure in April there's no evidence of Heartbleed having being exploited.

The disclosure of Heartbleed sent websites scrambling to apply patches. However, a study by academics at a number of US universities allays fears that the flaw may have been exploited for surveillance by government agencies before it became public.

The researchers say, "We investigated the attack landscape, finding no evidence of largescale attacks prior to the public disclosure, but vulnerability scans began within 22 hours".

By analyzing network traffic collected by traps at Lawrence Berkeley National Laboratory, the National Energy Research Scientific Computing Center and a honeypot on Amazon's EC2 network, researchers were able to determine if any attacks had been launched prior to the disclosure.

With full packet traces available from November 2013 through to April 2014 there were no signs of attempts to exploit Heartbleed in that period. The first attacks were seen less than 22 hours after the bug became public.

The researchers observed 5,948 attempts to exploit the vulnerability from 692 distinct hosts. The attacks targeted 217 hosts with seven attackers successfully completing 103 exploit attempts against 12 distinct hosts.

Three weeks after the disclosure the researchers began contacting the operators of hosts that were still vulnerable. This increased the patching rate by 47 percent. The mass notification of vulnerable operators had, say researchers, "...a significant positive impact on the patching of hosts to which we sent notifications, indicating that this type of notification helps reduce global vulnerability".

The report concludes that analyzing the response to Heartbleed has helped to offer perspective on how similar events can be dealt with in the future.

If you want to read about the research in more detail you can download the full report as a PDF.

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

The dynamics of modern Windows device management [Q&A]

Netflix says it will no longer share details of subscriber numbers

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

TEAMGROUP unveils MP44Q M.2 PCIe 4.0 SSD

Cyberwarfare incidents reported by almost half of UK firms

Ransomware, meet DRaaS: The future of disaster mitigation

Get 'Modern DevOps Practices -- Second Edition' (worth $39.99) for FREE

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

61 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

17 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

16 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

16 Comments

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

10 Comments

EndeavourOS ARM discontinued: A huge loss for the Linux community

9 Comments

Install the KB5035942 update for Windows 11 to gain all of the Moment 5 features right now

8 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.