NSA reportedly exploited Heartbleed for years, leaving us all at risk

Zach Epstein
This privacy-protecting app cocktail is the NSA’s worst nightmare

The odds are good that no one will be surprised to learn that the National Security Agency knew about the Heartbleed OpenSSL vulnerability that affected 66% of the entire Internet at the time of its discovery. The allegation that the NSA used the security hole itself to spy on targets might not be terribly shocking either. What is pretty surprising — and appalling — however, is the fact that Bloomberg is reporting the NSA knew about the huge vulnerability for “at least two years” and did nothing, leaving us all at risk.

More details can be found in Bloomberg’s report, which is linked below in our source section.

Head here for more on Heartbleed and instructions on what to do if you might be affected. A plugin that can alert you when you visit sites that are still impacted by Heartbleed can be found here.

More from BGR: Completely redesigned iPhone 6 fully detailed in huge leak from insider

This article was originally published on BGR.com

Related stories

This guide will teach you how to create stronger passwords

Why is Heartbleed called Heartbleed?

Trying to protect yourself from Heartbleed could land you in jail