- Oct 23, 2012
- 12,527
The "Heartbleed" exploit that was discovered in websites that use OpenSSL encryption last week has since been rapidly patched all over the world. However, a new report from the Sucuri security firm claims there are still a few sites out there that have yet to deal with the issue.
The company stated this week that they scanned the top 1 million visited websites, as listed by the Alexa rating service, to see how many of them still have not fixed the "Heartbleed" exploit. The top 1,000 sites show no "Heartbleed" OpenSSL vulnerabilities. and the report claims that only 53 of the top 10,000 sites have yet to fix the bug.
The numbers and percentages of "Heartbleed" sites got larger as Sucuri moved down the Alexa rankings. In the top 100,000, the firm claim 1,595 sites are still open to the exploit. The top 1 million sites have 20,320 that are not yet patched up; Sucsuri did not list the specific sites that are still vulnerable to the "Heartbleed" issue.
The lesson is that while the vast majority of websites are no longer open to the OpenSSL problem, web surfers still need to be cautious when entering their personal information, especially among sites that don't get a lot of traffic.
Source: Sucuri
The company stated this week that they scanned the top 1 million visited websites, as listed by the Alexa rating service, to see how many of them still have not fixed the "Heartbleed" exploit. The top 1,000 sites show no "Heartbleed" OpenSSL vulnerabilities. and the report claims that only 53 of the top 10,000 sites have yet to fix the bug.
The numbers and percentages of "Heartbleed" sites got larger as Sucuri moved down the Alexa rankings. In the top 100,000, the firm claim 1,595 sites are still open to the exploit. The top 1 million sites have 20,320 that are not yet patched up; Sucsuri did not list the specific sites that are still vulnerable to the "Heartbleed" issue.
The lesson is that while the vast majority of websites are no longer open to the OpenSSL problem, web surfers still need to be cautious when entering their personal information, especially among sites that don't get a lot of traffic.
Source: Sucuri
