6
This content is rated TV-MA, and is for viewers 18 years or older. Are you of age?
Sorry, you are not old enough to view this content.

CNET Update: Patching Heartbleed, a major Web security wound

About Video Transcript

CNET Update: Patching Heartbleed, a major Web security wound

2:54 /

CNET’s Bridget Carey explains why thousands of Web sites are scrambling to patch a bug that may have exposed your private information. Plus, Facebook tweaks privacy settings, and Sesame Street jumps into on-demand subscriptions.

On the internet, things are not always as secure as they seem. On the internet, things are not always as secure as they seem. I am Bridget Carey and this is your CNET update. I am Bridget Carey and this is your CNET update. [MUSIC]. [MUSIC]. Folks we have to have a talk about heart bleed. Folks we have to have a talk about heart bleed. It's a cool sounding name given to a serious security flaw, that many major websites are scrambling to fix, including Amazon, Yahoo and Google, and it means we will have to refresh our passwords for many websites. It's a cool sounding name given to a serious security flaw, that many major websites are scrambling to fix, including Amazon, Yahoo and Google, and it means we will have to refresh our passwords for many websites. Explaining heart bleed can get pretty technical. Explaining heart bleed can get pretty technical. But here's a simple way to think about it. But here's a simple way to think about it. When you're on a website entering in your secure information like a password or credit card info, there's a little padlock icon near the URL to let you know the website is encrypted and your data is private. When you're on a website entering in your secure information like a password or credit card info, there's a little padlock icon near the URL to let you know the website is encrypted and your data is private. Well, there's this open-source system that many sites. Well, there's this open-source system that many sites. Have been using for encryption. Have been using for encryption. It's called Open SSL, and it had a leak. It's called Open SSL, and it had a leak. Someone could trick a server into sharing the encrypted data, and even share the keys to unlock the encryption. Someone could trick a server into sharing the encrypted data, and even share the keys to unlock the encryption. It's believed that about 2 3rds of websites were vulnerable to this flawed security system. It's believed that about 2 3rds of websites were vulnerable to this flawed security system. And what's worse, is that the problem has existed for the past two years and security experts had no idea. And what's worse, is that the problem has existed for the past two years and security experts had no idea. If someone has been taking advantage of this bug to steal info, it leaves no trace. If someone has been taking advantage of this bug to steal info, it leaves no trace. There are no fingerprints left behind, so websites don't even know if they were compromised. There are no fingerprints left behind, so websites don't even know if they were compromised. That's comforting. That's comforting. So what can you do? So what can you do? I mean, besides get angry at the internet. I mean, besides get angry at the internet. Well, the smart thing to do is to wait for website to announce that they have patched the problem. Well, the smart thing to do is to wait for website to announce that they have patched the problem. Then you can change your passwords. Then you can change your passwords. Big sites like Yahoo and Google have fixed the issue, but not all smaller sites may have plugged the leak just yet. Big sites like Yahoo and Google have fixed the issue, but not all smaller sites may have plugged the leak just yet. Also, keep a close eye on your banking statements for any fraudulent activity. Also, keep a close eye on your banking statements for any fraudulent activity. Which you should always do anyway. Which you should always do anyway. Let's move on to a different kind of privacy. Let's move on to a different kind of privacy. Facebook privacy. Facebook privacy. The social network has admitted that sometimes its privacy settings can be confusing. The social network has admitted that sometimes its privacy settings can be confusing. So it's making some changes. So it's making some changes. If you haven't touched your privacy settings in a while, you'll get a popup With a little dinosaur asking you to double check your settings in case you didn't realize you've been making all your posts public. If you haven't touched your privacy settings in a while, you'll get a popup With a little dinosaur asking you to double check your settings in case you didn't realize you've been making all your posts public. And on the Facebook IOS app, you may have noticed that the audience selector which was on the lower-right corner is now clearly visible on the top of your status form. And on the Facebook IOS app, you may have noticed that the audience selector which was on the lower-right corner is now clearly visible on the top of your status form. Facebook will also add more descriptions on what public means, on the desktop drop-down menu. Facebook will also add more descriptions on what public means, on the desktop drop-down menu. And, as more of us watch video online and cut the cable subscription, there's another streaming video option making its debut. And, as more of us watch video online and cut the cable subscription, there's another streaming video option making its debut. Sesame Street Go, offers on-demand access to hundreds of full length episodes of the classic children's program. Sesame Street Go, offers on-demand access to hundreds of full length episodes of the classic children's program. And, it can be accessed on any device at sesamego.com. And, it can be accessed on any device at sesamego.com. Sesame Street Go is brought to you by the number four because it'll cost you $4 a month. Sesame Street Go is brought to you by the number four because it'll cost you $4 a month. That's your tech news update. That's your tech news update. Head to cnet.com for more details on these stories. Head to cnet.com for more details on these stories. From our studios in New York, I'm Bridget Carey. From our studios in New York, I'm Bridget Carey. [SOUND] [SOUND] On the internet, things are not always as secure as they seem. On the internet, things are not always as secure as they seem. I am Bridget Carey and this is your CNET update. I am Bridget Carey and this is your CNET update. [MUSIC]. [MUSIC]. Folks we have to have a talk about heart bleed. Folks we have to have a talk about heart bleed. It's a cool sounding name given to a serious security flaw, that many major websites are scrambling to fix, including Amazon, Yahoo and Google, and it means we will have to refresh our passwords for many websites. It's a cool sounding name given to a serious security flaw, that many major websites are scrambling to fix, including Amazon, Yahoo and Google, and it means we will have to refresh our passwords for many websites. Explaining heart bleed can get pretty technical. Explaining heart bleed can get pretty technical. But here's a simple way to think about it. But here's a simple way to think about it. When you're on a website entering in your secure information like a password or credit card info, there's a little padlock icon near the URL to let you know the website is encrypted and your data is private. When you're on a website entering in your secure information like a password or credit card info, there's a little padlock icon near the URL to let you know the website is encrypted and your data is private. Well, there's this open-source system that many sites. Well, there's this open-source system that many sites. Have been using for encryption. Have been using for encryption. It's called Open SSL, and it had a leak. It's called Open SSL, and it had a leak. Someone could trick a server into sharing the encrypted data, and even share the keys to unlock the encryption. Someone could trick a server into sharing the encrypted data, and even share the keys to unlock the encryption. It's believed that about 2 3rds of websites were vulnerable to this flawed security system. It's believed that about 2 3rds of websites were vulnerable to this flawed security system. And what's worse, is that the problem has existed for the past two years and security experts had no idea. And what's worse, is that the problem has existed for the past two years and security experts had no idea. If someone has been taking advantage of this bug to steal info, it leaves no trace. If someone has been taking advantage of this bug to steal info, it leaves no trace. There are no fingerprints left behind, so websites don't even know if they were compromised. There are no fingerprints left behind, so websites don't even know if they were compromised. That's comforting. That's comforting. So what can you do? So what can you do? I mean, besides get angry at the internet. I mean, besides get angry at the internet. Well, the smart thing to do is to wait for website to announce that they have patched the problem. Well, the smart thing to do is to wait for website to announce that they have patched the problem. Then you can change your passwords. Then you can change your passwords. Big sites like Yahoo and Google have fixed the issue, but not all smaller sites may have plugged the leak just yet. Big sites like Yahoo and Google have fixed the issue, but not all smaller sites may have plugged the leak just yet. Also, keep a close eye on your banking statements for any fraudulent activity. Also, keep a close eye on your banking statements for any fraudulent activity. Which you should always do anyway. Which you should always do anyway. Let's move on to a different kind of privacy. Let's move on to a different kind of privacy. Facebook privacy. Facebook privacy. The social network has admitted that sometimes its privacy settings can be confusing. The social network has admitted that sometimes its privacy settings can be confusing. So it's making some changes. So it's making some changes. If you haven't touched your privacy settings in a while, you'll get a popup With a little dinosaur asking you to double check your settings in case you didn't realize you've been making all your posts public. If you haven't touched your privacy settings in a while, you'll get a popup With a little dinosaur asking you to double check your settings in case you didn't realize you've been making all your posts public. And on the Facebook IOS app, you may have noticed that the audience selector which was on the lower-right corner is now clearly visible on the top of your status form. And on the Facebook IOS app, you may have noticed that the audience selector which was on the lower-right corner is now clearly visible on the top of your status form. Facebook will also add more descriptions on what public means, on the desktop drop-down menu. Facebook will also add more descriptions on what public means, on the desktop drop-down menu. And, as more of us watch video online and cut the cable subscription, there's another streaming video option making its debut. And, as more of us watch video online and cut the cable subscription, there's another streaming video option making its debut. Sesame Street Go, offers on-demand access to hundreds of full length episodes of the classic children's program. Sesame Street Go, offers on-demand access to hundreds of full length episodes of the classic children's program. And, it can be accessed on any device at sesamego.com. And, it can be accessed on any device at sesamego.com. Sesame Street Go is brought to you by the number four because it'll cost you $4 a month. Sesame Street Go is brought to you by the number four because it'll cost you $4 a month. That's your tech news update. That's your tech news update. Head to cnet.com for more details on these stories. Head to cnet.com for more details on these stories. From our studios in New York, I'm Bridget Carey. From our studios in New York, I'm Bridget Carey. [SOUND] [SOUND]

New releases

SanDisk's 200GB microSD card packs loads of storage
1:51 March 2, 2015
The 200GB storage card can store up to 16 hours of full HD video on your phone or tablet. Plus, check out new ways to transfer media...
Play video
Microsoft Universal Folding Keyboard works for Android, iOS, Windows devices
1:07 March 2, 2015
Need to do some real work? This small portfolio conceals a full QWERTY keyboard that pairs with most tablets and phones.
Play video
Prizefight: Battle of the Specs Samsung Galaxy S6 vs Apple iPhone 6 Plus
4:34 March 2, 2015
t's a tale of the tape between two 5-inch screen phones before the Galaxy S6 is released. Let's see what they have under the hood...
Play video
See the Sailfish-powered Android rival Jolla Tablet
2:11 March 2, 2015
We take a look at the Jolla Tablet, an 8-inch tablet that runs Sailfish OS, aimed to be a cleaner, easier to use Android rival.
Play video
Microsoft's new 5-inch Lumia 640 comes your way in April
1:05 March 2, 2015
This budget handset comes in four colors and will sell all over the world.
Play video
Supersize Lumia 640 XL is Microsoft's budget phablet
1:09 March 2, 2015
A 5.7-inch screen makes this Windows 8.1 phone a more economical bet for lovers of the large display.
Play video
Huawei Watch a gleaming sapphire Android Wear beauty
1:26 March 2, 2015
Stainless steel, sapphire crystal and leather or metal bands: Meet the newest contender in fancy smartwatch design.
Play video
Smartphone cameras get smarter: Inside Qualcomm's imaging lab
1:27 March 2, 2015
The chipset giant is working on ways for smartphone and tablet cameras to recognize people, scenes and even your sloppy handwritin...
Play video