Skip to main content

This Heartbleed Bug is going to turn me into a hermit

this heartbleed bug is going to turn me into a hermit
Image used with permission by copyright holder

Screw it. I’m done.

Someone buy me a rotary phone, a copy of the Yellow Pages, and a box of paper checks. Nothing online is safe anymore.

Recommended Videos

This is how I feel after dealing with the massive Heartbleed OpenSSL bug for the better part of a week. For two years, a majority of websites, mobile apps, operating systems, and Internet services we all use — and as a tech reporter I use way too many of them — have been open season for hacking, all thanks to a tiny error in a few lines of code in an open-source security protocol. All of our logins, passwords, credit card information, personal data — everything; it’s all out there and may have been for a while. Even Gmail was vulnerable. Facebook, too. The problem is so vast that we’re discovering new equipment and software every day that’s going to need patching and fixing. It makes Y2K feel like a fart in the wind.

The worst part is, there’s absolutely nothing we, as users, did to cause this, and we’re powerless to protect ourselves. We just have to sit here and hope we don’t die of this Heartbleed bug.

We shouldn’t call it a “bug” at all. It’s more like the horde of locusts from the Book of Revelation. Sadly, even the Bible was more optimistic than what’s ahead for the Internet. Those locusts only tormented the Earth for five months. I doubt we’ll be so lucky.

Security advisors are telling us crazy things like:

  • Don’t reset your passwords until services have been patched
  • Reset all your passwords once a service is safe, just to make sure
  • Don’t visit any affected websites
  • Don’t use any affected smartphone apps
  • Don’t make purchases online until this clears up
  • Call all your banks and services to see if they’re affected by this

The problem is that there’s no way to even know if a website or app is affected by this bug without using a search engine like Yahoo, Google, or DuckDuckGo (all of which were also hit by this bug), or downloading an app from Google Play (also affected). Most of us probably can’t find a phone number without a Web search. And the links you’ll find in these search engines might be to sites that are vulnerable themselves. Or you could find out from your email, which has probably been compromised itself.

Few companies are taking any real responsibility either. Google quietly admitted on its blog that any person with a phone running Android 4.1.1 is vulnerable to this problem, but didn’t say which handsets except admitting to DT via email that it “estimate[s] use of Android 4.1.1 to be at single digit percentages.” Sounds small, right? It’s not. There are more than a billion Android devices in people’s hands around the world, meaning anywhere from 10 to 100 million people have a phone that is open season for hackers. And those phones might continue to be exposed for months, until the manufacturers, then carriers, of said phones release an update, and those users all install said update. When are the patches coming? Who’s affected? We don’t know. No company wants to take any blame.

When every service is a potential landmine and you’re running around blind, what other option do you have?

I am positive that there are at least a few dozen services I use that are compromised by this OpenSSL Heartbleed bug. Yet I’ve received only two emails from these sites warning me. One was from a European AirBNB competitor called Roomarama (thanks, guys!) and the other was from a finance app called Manilla. Manilla wasn’t even vulnerable, but they sent me a note to make sure I check other services.

So thank you to Roomarama and Manilla for notifying your users directly about Heartbleed. You’re a lot nicer than Google, Facebook, Yahoo, GoDaddy, TurboTax, Minecraft, OKCupid, Tumblr, Pinterest, Instagram, Dropbox, BlackBerry, Etsy, Fandango, GrubHub, Hulu, Steam, Netflix, and god knows how many other services out there.

How in hell I’m supposed to think up new passwords for all these services? I don’t know.

According to a Symantec report, 552 million people’s identities were exposed by corporate or government data breaches in 2013 that weren’t their fault. In 2012, that number was 93 million. What will 2014 hold? Will we hit a billion? How many times will I have to change my passwords next year?

Today, I will browse the Web, use apps, and do everything I normally do. I have no other option. When every service is a potential landmine and you’re running around blind, what other option do you have?

I just want to give up, move to a cabin, see if I can grow a beard, buy a shotgun, and defend my gated dirt driveway the old fashioned way. Digital life is getting so complicated.

[Image courtesy of Jens Ottoson/Photographee.eu/Shutterstock]

Jeffrey Van Camp
Former Digital Trends Contributor
As DT's Deputy Editor, Jeff helps oversee editorial operations at Digital Trends. Previously, he ran the site's…
iOS 18.3: What to expect in the next iPhone update
ios 18 3 what to expect in the next update genmoji

Apple has released the iOS 18.3 Release Candidate (RC) to developers and its public beta community members. This indicates that the final update will likely be available to users with the best iPhones on Monday, January 27.

While this update doesn't introduce as many new features as iOS 18.1 and iOS 18.2 did, some elements will still interest everyone. Here's what's coming.
The biggest new feature
Once you install iOS 18.3 on your iPhone, you will quickly notice one of its most significant updates: improved Notification Summaries. Initially launched with iOS 18, this feature aims to simplify reviewing incoming messages, news headlines, and other notifications using Apple's technology. However, the summaries have faced considerable criticism for their shortcomings.

Read more
Does the Samsung Galaxy S25 have a headphone jack?
A person holding the Samsung Galaxy S25 Ultra.

Samsung had another exciting lineup of flagship smartphones to show off at this week’s Galaxy Unpacked event. Although there weren’t too many surprises, this year’s Galaxy S25 models take the lineup to new heights with a more refined aesthetic for the Galaxy S25 Ultra and more power and longer battery life across the board, thanks to Qualcomm’s latest Snapdragon 8 Elite chip.

Nevertheless, Samsung leaves us with one nagging question when it introduces each year’s latest Galaxy S series models: will this year mark the return for the headphone jack? Bluetooth headphones may be all the rage these years, and Samsung’s Galaxy Buds 3 Pro make a great companion for the company’s high-end smartphones, but some folks still understandably prefer wired connections for greater reliability and higher sound quality.
The Galaxy S25 does not have a headphone jack

Read more
Samsung Galaxy S25 series barely makes a case for itself
Galaxy S25 series

Samsung’s flashy Unpacked event, earlier today, kicked off with chatter about AI, coming straight from its mobile business chief. Throughout the event, AI was a recurring theme, hijacking the talk away from exciting hardware innovation.

One of my colleagues even joked about not knowing the phone’s screen size despite the event entering its latter half. It was merely a sign of certain unsavory things to come, along with copious amounts of Apple “inspirations.”

Read more