介绍:
A newly-discovered online bug, dubbed "Heartbleed," could have affected millions of computer users worldwide by exposing their passwords, credit card numbers and other sensitive information to potential theft by computer hackers.
一个代号"Heartbleed", 意为"心脏出血"的重大安全漏洞日前被曝光,它能让攻击者从服务器内存中读取包括用户名,密码和信用卡号等隐私信息在内的数据,目前已经波及大量互联网公司.
Researchers working at Google discovered the bug, which left websites using OpenSSL security encryption vulnerable for more than two years before being detected. The bug affected two-thirds of all websites worldwide, according to British internet research firm, Netcraft.
Shi Xiaohong, a security expert with Chinese antivirus developer, Qihoo 360, said that heartbleed is a "nuclear crisis in the internet landscape".
Domestic websites, including Taobao, one of China's leading e-shopping site, and online train ticket vendor, site 12306.cn, had the bug. By Wednesday evening, most websites reported they updated their encryption to fix the bug.
Alibaba said that all of their websites, including Taobao, Alipay and Tmall, are now safe to use with the system upgrade. Qihoo 360 sent alerts to around 120-thousand website owners in China urging them to upgrade their systems.
大家还在听
