So it looks like it’s that time of the month and/or year again. This is no time for shopping. This is about changing your passwords. A bug in Cloudflare’s software has caused a leak in information that use the services of Cloudfare themselves.
Called Cloudbleed (aptly named if I should say so myself), the bug essentially leaks sensitive information such as website passwords in plain text from a period ranging from September 2016 to February 2017. Just to put things into perspective, that’s over 5.5 million websites that use Cloudflare, including Fitbit, Uber, OkCupid, Medium, and Yelp. Making matters a tad worse, some of the data has also been cached by search engines such as Google and Yahoo, thus making them accessible to the public.
As per the researchers who discovered the vulnerability, Cloudbleed sends portions of data to a user’s browser after they have visited a webpage hosted by the Cloudflare. These details range from private messages, to online passwords and many other sensitive details.
The leak could be potentially catastrophic for web users, but Cloudflare has attempted to sooth things over stating that no evidence was present that the data had fallen into the hands of hackers.
Precautions have been taken. For example, this website allows users to search through services that they have signed up for in order to see if they may be affected or not.
Despite Cloudbleed being patched up now, there is still a large amount of data that had been leaking at a constant state, perhaps even months before.
OKCupid, a dating site stated that in their initial investigation, they had minimal if not no exposure from Cloudbleed. Similarly, 1Password, a password management service also reported that no one of their confidential data was exposed.
That being said however, there are steps you can take to ensure that you are safe. The first and most logical choice would be to change your passwords.
So skip the usual “123456” and even “password” as your password. Also stay away from words that can be easily identified to you personally, such as your date of birth, loved one’s name or even pet’s name.
Ideally, a strong password would have a mixture of letters, numbers and symbols. This increases the strength of the password and make it less susceptible to hacking or even a brute force attack. Bigger is indeed better so the longer the password, the safer you are. Additionally, passwords using upto 10 uppercase and lowercase letters mixed with numbers are proven to be more secure.
Another step to follow is to enable two-factor or two-step authentication. This is where upon entering your usual login details, a special code is sent to your phone via a text message. This ensure that even if someone obtains your username and password, they would still need the secondary code as well.
Subscribe to our mailing list and get interesting stuff and updates to your email inbox.
thank you for subscribing 🙂
awww something went wrong 🙁
We respect your privacy and take protecting it seriously
It is a unique full-day
It is a unique full-day program; its purpose is to share our accumulated learning from the process of studying organizations each year and allow Great Workplaces to share their success stories as well.
Our vision is to make Sri Lanka a “Great Place to Work” and this is our endeavor to encourage organizations to start the journey and to give them the foundation for creating their own great workplaces.
(Wednesday) 8:30 pm - 5:00 pm
Cinnamon Grand - Oak Room
Informatics Institute of Technology invites
Informatics Institute of Technology invites for Cutting Edge 2017!
Theme: Internet of Things and Entrepreneurship
#CuttingEdge is an annual exhibition that demonstrates state of the art IT and Business projects researched and developed by the students of #IITand it will be held on 29th of June from 9.00 a.m. to 8.00 p.m. and 30th of June from 9.00 a.m. to 4.00 p.m. at BMICH, Colombo 7.
– Cutting Edge Exhibition – Over 120 ICT | Business Projects
– Seminars for School Students
(Topics – Internet of Things (IoT) and Entrepreneurship)
– Awareness Programme – Sri Lanka CERT (National Center for Cyber Security)
– iFM Radio Station with a live Web Cast
29 (Thursday) 9:00 am - 30 (Friday) 4:00 pm
Bauddhaloka Mawatha, Colombo
Informatics Institute of Technology
Are you a computer geek
Are you a computer geek who loves learning
new programming languages?
Then this is the hackathon for you! We are looking for a few passionate programmers to take Ballerina for a twirl, push it to its limits and give us valuable feedback.
Ballerina is a general purpose, concurrent and strongly typed programming language with both textual and graphical syntaxes, optimized for use cases on microservices. All we want you to do is pick a challenging scenario which you think Ballerina can solve, learn Ballerina, work with the Ballerina team to create a solution and give us your feedback on what went well and what didn’t. And of course, do this all in 12 hours.
The Sri Lanka Institute of
The Sri Lanka Institute of Information Technology (SLIIT), the nation’s leading degree awarding institute in the field of Information Technology is proud to announce “CODEFEST 2017” for the 6th consecutive year. CODEFEST is the effort of SLIIT to elevate the entire nation’s ICT knowledge to achieve the nation’s aspiration of being the knowledge hub in Asia. Therefore, having realized the present need of the country, the Faculty of Computing of SLIIT is conducting CODEFEST, a Nationwide Software Competition in collaboration with the Ministry of Education. In addition, CODEFEST is organized as a part of a CSR project to disseminate IT knowledge across the island as a whole
6 (Thursday) 8:00 am - 7 (Friday) 6:00 pm
Sri Lanka Institute of Information Technology - Malabe Campus
B263, Malabe 10115
We have to look up your RSVP in order to change itFind my RSVP
We have email-ed you a confirmation to