Presented By

Over at Vocativ, Eric Markowitz has a good piece on how a Finnish security firm discovered the Heartbleed bug that’s left vast numbers of Internet services utterly vulnerable for more than two years:

An engineer at Codenomicon, the firm in question, found the bug at the same time as a Google researcher, an amazing coincidence considering that it was introduced back in March 2012.

The whole situation is chilling — not just because we don’t know who might have known about the bug and leveraged it to steal data, but also because it’s such a sobering reminder of how little we know about the software we depend on every day. There are other Heartbleeds out there; it’s just that nobody’s told us about them yet.

More Heartbleed coverage on TIME

More Must-Reads From TIME

Contact us at

You May Also Like