Heartbleed can be exploited to steal private keys – CONFIRMED!

New interesting info was released regarding Heartbleed OpenSSL vulnerability. Company cloudflare (cloudflare.com) announced a competition on April 11th to find out if private SSL keys can be stolen from vulnerable server using Heartbleed vulnerability. And truly until April 12th, 4 independent researchers proved that they were able to steal private key from vulnerable server.
This is final evidence, that at some circumstances, Heartbleed vulnerability can be abused to get private keys from server.

More info here and my original Heartbleed post here

Leave a Reply

Your email address will not be published. Required fields are marked *

Write numbers u see, eg. 365 *