Earlier this week it came to light that a widely used encryption software, OpenSSL, has a major security flaw, now known as Heartbleed. Apple today announced that iOS, OSX and other key web services were not affected by the vulnerability.
Heartbleed was discovered independently by a team of security engineers at Codenomicon and by Neel Mehta of Google Security, both of whom reported it to the OpenSSL team. Officially designated as CVE-2014-0160, the Heartbleed bug allows hackers to steal information that would otherwise be encrypted by OpenSSL, the most popular open source cryptographic library used to encrypt internet traffic. At risk are security keys, usernames, passwords, emails, instant messages and documents among other pieces of