Aaaand we now have our first confirmed breach of data tied to Heartbleed – the Canadian Revenue Authority has reported that the social insurance numbers of about 900 Canucks were downloaded by attackers using Heartbleed. Canada’s equivalent of the US IRS had shut down their e-filing website last week when the bug was announced.
Akamai (whose network carries almost a third of the Internet’s traffic) was also in the Heartbleed news this AM… it turns out that their patch to correct their servers’ vulnerability had a bug in it. They are revoking their certificates and issuing new ones in the wake of patching the patch.
Stay tuned… I am sure there is more to come