By Harry McCracken
April 11, 2014

Over at Vocativ, Eric Markowitz has a good piece on how a Finnish security firm discovered the Heartbleed bug that’s left vast numbers of Internet services utterly vulnerable for more than two years:

An engineer at Codenomicon, the firm in question, found the bug at the same time as a Google researcher, an amazing coincidence considering that it was introduced back in March 2012.

The whole situation is chilling — not just because we don’t know who might have known about the bug and leveraged it to steal data, but also because it’s such a sobering reminder of how little we know about the software we depend on every day. There are other Heartbleeds out there; it’s just that nobody’s told us about them yet.

More Heartbleed coverage on TIME

Contact us at editors@time.com.

SPONSORED FINANCIAL CONTENT

You May Like

EDIT POST