• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Advertise
  • Submissions
  • About Us
  • Contact Us
  • Jan 16, 2021
  • Startup
    • Creating a Plan
    • Funding a Startup
    • Franchise Center
    • Getting Your Office Ready
    • Making Your Business Official
    • Marketing Your New Business
    • Personal Readiness
  • Run & Grow
    • Customer Service
    • Human Resources
    • Innovation
    • Legal
    • Operations
    • Risk Management
  • Leadership
    • Best Practices
    • Communication
    • Green Initiatives
    • Open Culture
    • Strategic Planning
    • People Skills
  • Sales & Marketing
    • Advertising and Lead Generation
    • Marketing Innovations
    • Marketing Plans
    • Online Marketing
    • Relationships
    • Sales Activities
  • Finance
    • Budgeting and Personal Finance
    • Payments and Collections
    • Tax and Accounting
    • Pricing Strategy
    • Working with Investors
    • Working with Lenders
  • Tech
    • eCommerce
    • Hardware
    • Software
    • Security
    • Tech Reviews
    • Telecom
  • Shop

SmallBizClub

Helping You Succeed

efile4biz banner
Home / Technology / Security / What is HeartBleed and Why Your Small Business Should Be Concerned
What is HeartBleed and Why Your Small Business Should Be Concerned

What is HeartBleed and Why Your Small Business Should Be Concerned

1317 Views

Apr 18, 2014 By SmallBizClub Contributor

The technology industry was abuzz with revelations last week after the discovery of a critical software bug called HeartBleed. According to information registered with the Common Vulnerabilities and Exposures system, the bug made it possible for the attacker to steal the servers’ private keys as well as user session cookies and passwords. The bug affected security on over half a million web servers that made use of the OpenSSL cryptography library. 

 
Although the bug itself has been fixed with a new version of OpenSSL being released, the revelation has created quite a debate on the number of loopholes that businesses are susceptible to on the internet. A lot of the biggest tech companies, including the likes of Amazon Web Services, Akamai and SourceForge, were impacted by HeartBleed, which means that if you are one of the small businesses making use of AWS or Akamai, you are likely to have been a target too.
 
What Should You Do Now?
 
The first and foremost thing that any small business must do is to test whether they have been affected as well. You can use this link to test if your website has been affected as well. If it has, then you should be quickly resetting the password to all your admin controls. Apart from your server credentials, you must also change the passwords to all third party accounts held by your business. This includes your login credentials to your AWS dashboard, your Tumblr account, your GoDaddy hosting account, your Google services account, etc. The reason is because hackers who exploit this bug may steal your information from any of your social media or third party services account. 
 
Is That All?
 
Absolutely not. According to latest reports, HeartBleed could also potentially impact anti-virus software, firewall services, mobile applications and network switches. This makes it important for businesses to take a comprehensive look at every component of your technology infrastructure and assess your vulnerability here. The ExpertIP blog has an exhaustive list of resources that you could check out. A security audit could reveal other potential loopholes in your infrastructure that could put your business at risk. 
 
Re-Evaluate Your Subscribed Services
 
If the NSA PRISM revelations made a lot of businesses skeptical about cloud services last year, HeartBleed should reinforce that skepticism even further. According to a WSJ report, the NSA had apparently known about the HeartBleed and other similar vulnerabilities but, instead of asking for a fix, used these vulnerabilities to gain access into web servers until a fix was implemented. Given the bad rep that NSA received last year for PRISM, these revelations are likely to make small businesses even more wary of using third party services. If you are a business that hosts confidential data on third party services, re-evaluate your priorities and migrate some of them in-house if you deem it fit. 
 
HeartBleed is not the first nor the last of security bugs that cause havoc on the technology infrastructure of today. However, by adhering to the right security standards and best-practices, your small business can ensure that the impact due to such vulnerabilities are kept at a minimum. 
 
frank-gothmannAuthor: Frank Gothmann writes on security and IT infrastructure. He may be reached at fgothmann@mail.com.

Filed Under: Security Tagged With: Frank Gothmann, Infrastructure, Network Security, Security

SmallBizClub Contributor

SmallBizClub Contributor

Related Posts

  • How To Secure Your Business Data in 3 Steps
  • 4 WaysTo Protect Your Business Data
  • are-your-employees-compromising-your-cyber-security-What’s Next For Security Authentication?

Primary Sidebar

efile4biz banner

Random

14 Practical Ways to Make Money with Bitcoin

Jan 16, 2021 By Luke Britton

6 Things Every Startup Should Know in 2021

Jan 16, 2021 By Jeremy Bowler

Have These 6 Qualifications to Apply for a Small Business Loan

Jan 16, 2021 By Jamshed Chaudhary

6 Tips for Package and Labeling Management

Jan 15, 2021 By Jamshed Chaudhary

7 Characteristics Of Startup Founders Who Enjoy Life

Jan 15, 2021 By Marty Zwilling

efile4biz banner

Footer

About Us

Small Biz Club is the premier destination for small business owners and entrepreneurs. To succeed in business, you have to constantly learn about new things, evaluate what you’re doing, and look for ways to improve—that’s what we’re here to help you do.

  • Facebook
  • LinkedIn
  • RSS
  • Twitter

Copyright © 2021 by Tarkenton Institute, Inc. All Rights Reserved | Terms | Privacy