How does the Heartbleed bug work?

You may have already heard about the massive Heartbleed exploit and how it could have been exposing users’ personal passwords, emails and even credit card details to cybercriminals over the past two years.

The bug, first spotted by Google Security and Codenomicon, exists in open source software called OpenSSL, which is the standard encryption a lot of websites use to keep your username and password safe. This means cyber criminals can steal personal details that would normally be protected by the SSL/TLS encryption used to secure the Internet.

But how exactly does it work? The infographic from BAE Systems Applied Intelligence below illustrates the process.


Type: White Paper


  • Favorite list is empty.
FavoriteLoadingClear favorites

Your favorite posts saved to your browsers cookies. If you clear cookies also favorite posts will be deleted.