You may have already heard about the massive Heartbleed exploit and how it could have been exposing users’ personal passwords, emails and even credit card details to cybercriminals over the past two years.
The bug, first spotted by Google Security and Codenomicon, exists in open source software called OpenSSL, which is the standard encryption a lot of websites use to keep your username and password safe. This means cyber criminals can steal personal details that would normally be protected by the SSL/TLS encryption used to secure the Internet.
But how exactly does it work? The infographic from BAE Systems Applied Intelligence below illustrates the process.