This Heartbleed Bug is going to turn me into a hermit

this heartbleed bug is going to turn me into a hermit

Screw it. I’m done.

Someone buy me a rotary phone, a copy of the Yellow Pages, and a box of paper checks. Nothing online is safe anymore.

This is how I feel after dealing with the massive Heartbleed OpenSSL bug for the better part of a week. For two years, a majority of websites, mobile apps, operating systems, and Internet services we all use — and as a tech reporter I use way too many of them — have been open season for hacking, all thanks to a tiny error in a few lines of code in an open-source security protocol. All of our logins, passwords, credit card information, personal data — everything; it’s all out there and may have been for a while. Even Gmail was vulnerable. Facebook, too. The problem is so vast that we’re discovering new equipment and software every day that’s going to need patching and fixing. It makes Y2K feel like a fart in the wind.

The worst part is, there’s absolutely nothing we, as users, did to cause this, and we’re powerless to protect ourselves. We just have to sit here and hope we don’t die of this Heartbleed bug.

We shouldn’t call it a “bug” at all. It’s more like the horde of locusts from the Book of Revelation. Sadly, even the Bible was more optimistic than what’s ahead for the Internet. Those locusts only tormented the Earth for five months. I doubt we’ll be so lucky.

Security advisors are telling us crazy things like:

  • Don’t reset your passwords until services have been patched
  • Reset all your passwords once a service is safe, just to make sure
  • Don’t visit any affected websites
  • Don’t use any affected smartphone apps
  • Don’t make purchases online until this clears up
  • Call all your banks and services to see if they’re affected by this

The problem is that there’s no way to even know if a website or app is affected by this bug without using a search engine like Yahoo, Google, or DuckDuckGo (all of which were also hit by this bug), or downloading an app from Google Play (also affected). Most of us probably can’t find a phone number without a Web search. And the links you’ll find in these search engines might be to sites that are vulnerable themselves. Or you could find out from your email, which has probably been compromised itself.

Few companies are taking any real responsibility either. Google quietly admitted on its blog that any person with a phone running Android 4.1.1 is vulnerable to this problem, but didn’t say which handsets except admitting to DT via email that it “estimate[s] use of Android 4.1.1 to be at single digit percentages.” Sounds small, right? It’s not. There are more than a billion Android devices in people’s hands around the world, meaning anywhere from 10 to 100 million people have a phone that is open season for hackers. And those phones might continue to be exposed for months, until the manufacturers, then carriers, of said phones release an update, and those users all install said update. When are the patches coming? Who’s affected? We don’t know. No company wants to take any blame.

When every service is a potential landmine and you’re running around blind, what other option do you have?

I am positive that there are at least a few dozen services I use that are compromised by this OpenSSL Heartbleed bug. Yet I’ve received only two emails from these sites warning me. One was from a European AirBNB competitor called Roomarama (thanks, guys!) and the other was from a finance app called Manilla. Manilla wasn’t even vulnerable, but they sent me a note to make sure I check other services.

So thank you to Roomarama and Manilla for notifying your users directly about Heartbleed. You’re a lot nicer than Google, Facebook, Yahoo, GoDaddy, TurboTax, Minecraft, OKCupid, Tumblr, Pinterest, Instagram, Dropbox, BlackBerry, Etsy, Fandango, GrubHub, Hulu, Steam, Netflix, and god knows how many other services out there.

How in hell I’m supposed to think up new passwords for all these services? I don’t know.

According to a Symantec report, 552 million people’s identities were exposed by corporate or government data breaches in 2013 that weren’t their fault. In 2012, that number was 93 million. What will 2014 hold? Will we hit a billion? How many times will I have to change my passwords next year?

Today, I will browse the Web, use apps, and do everything I normally do. I have no other option. When every service is a potential landmine and you’re running around blind, what other option do you have?

I just want to give up, move to a cabin, see if I can grow a beard, buy a shotgun, and defend my gated dirt driveway the old fashioned way. Digital life is getting so complicated.

[Image courtesy of Jens Ottoson/]


Windows handwriting-recognition tool may pose security risk

A Windows file that is designed to help improve the platform's ability to translate your handwritten notes into readable text may be a security concern. One researcher found it contained passwords and email contents.

Don't buy a new router, fix your Wi-Fi with these quick tips

Don't panic when your Wi-Fi goes down. Instead, fix it. These simple solutions to the most common Wi-Fi Problems will get you back online at high speed in no time (hopefully) without buying a new router.
Smart Home

OK, Google, what can you do? Tips and tricks for the Google Home

The Home functions in a similar fashion to its main competitor, the Amazon Echo, but has the added benefit of select Google services. Here are few tips to help you make the most of the newfangled device.

The big four U.S. carriers are joining forces to get rid of app passwords

The big four carriers in the U.S. announced a new initiative called Project Verify, designed to do away with needing new passwords for each individual app. The new service isn't available to consumers just yet.

Find out how Apple's new iPhones measure up to the most bezel-less designs

As the smartphone industry marches toward a bezel-less future, we compare the shrinking bezels on the latest and greatest devices. Find out which manufacturers have the smallest bezels on their smartphone as we measure them side by side.

Mi 8 Pro looks like an iPhone, but has a feature Apple fans can only dream of

Xiaomi has launched two new phones in the Mi 8 family: The Mi 8 Pro and the Mi 8 Lite. Unlike the past models, these two are definitely going to be sold internationally. Here's what you need to know about them both.

Just $100 buys you this super-tough — and very cool — G Shock fitness watch

Casio has announced a new Bluetooth-connected fitness watch in its G Shock line. The GBD-800 has an all-new digital display, fitness tracking technology, a classic G Shock look, and an attractive price.

iOS 12's Siri Shortcuts help Apple close the digital assistant gap

Siri may be lagging behind the competition, but Apple is finally supercharging the digital assistant with Siri Shortcuts, which allows you to perform tasks quickly and easily. Here's how to use iOS 12's new Siri Shortcuts app.

Apple iPhone XS vs. Samsung Galaxy S9: 2018’s biggest flagships clash

The iPhone XS has been revealed, and it's one of the best phones of the year. But even though it's Apple's latest and greatest, it's up against a lot of competition. Is the iPhone XS better than the Samsung Galaxy S9?

Samsung exec confirms upcoming Galaxy S10 will sport 'very significant changes'

While we still may be months away from an announcement, there's no doubt about it: Samsung is working hard on its successor to the Galaxy S9. Here's everything we know about the upcoming Samsung Galaxy S10.

The best weather apps for the iPhone

Don't rely solely on your local meteorologist to stay up to date on the weather. Take matters into your own hands with one of these weather apps, each of which brings something unique to the table.

Be an online phantom and web surf safely with Ghostery’s mobile browser

Keeping your private information to yourself has become progressively harder in the internet age. If you're worried about your personal information, check out the new version of the Ghostery browser for iOS and Android.

Updating to Apple’s iOS 12 will make your iPhone a whole lot smarter

iOS 12, the latest version of Apple’s iOS, is officially here. We took it for a spin to check out its new noteworthy features, and if it truly changes our smartphone habits for the better.

OnePlus 6T may launch soon with in-display fingerprint sensor, dual cameras

According to a recent report, the launch of the OnePlus 6T could be different from any other OnePlus launch in history. How? It could have the backing of a major U.S. carrier. Here's everything we know about the OnePlus 6T.