'Heartbleed' hits 1.5 million users of UK parenting website

Apr 14, 2014
British parenting website Mumsnet is the latest organisation to have been hacked due to the "Heartbleed" bug, founder Justine Roberts revealed on Monday

British parenting website Mumsnet is the latest organisation to have been hacked due to the "Heartbleed" bug, founder Justine Roberts revealed on Monday.

"Last week we became aware of the Heartbleed bug and immediately applied a fix to close the OpenSSL hole," she said in a statement.

"However, it became apparent that ' submitted via our login page had been accessed prior to our applying this fix."

All 1.5 million registered users were asked to change their passwords, and Roberts did not know how many users had had data stolen.

"The is that the data of every Mumsnet user account was accessed," she said.

"It is possible that this information could then have been used to log in as you and give access to your posting history, your personal messages and your personal profile, although we should say that we have seen no evidence of anyone's account being used for anything other than to flag up the ."

The website offers users a forum in which parents can ask for, and pass on, advice about bringing up children.

Officials in Ottawa on Monday announced personal data for as many as 900 Canadian taxpayers had been stolen after being made vulnerable by the bug.

The recently-discovered flaw in online-data scrambling software OpenSSL allows hackers to eavesdrop on online communications, steal data, impersonate websites and unlock encrypted data.

Computer security specialists, website masters and others became aware last week of problems posed by the "Heartbleed" bug after several reports of hacking.

Explore further: Canadians' tax data stolen in Heartbleed breach

add to favorites email to friend print save as pdf

Related Stories

What you need to know about the Heartbleed bug

Apr 09, 2014

Millions of passwords, credit card numbers and other personal information may be at risk as a result of a major breakdown in Internet security revealed earlier this week.

'Heartbleed' bug a critical Internet illness

Apr 11, 2014

The "Heartbleed" flaw in Internet security is as critical as the name implies and wider spread than first believed. Warnings about the danger exposed early this week reached widening circles on Thursday, with everyone from website o ...

Heartbleed bug find triggers OpenSSL security advisory

Apr 08, 2014

A flaw called Heartbleed in OpenSSL, which is a software library used for the protection and security of millions of websites, was uncovered by Neel Mehta of Google Security, who first reported it to the ...

Recommended for you

To deter cyberattacks, build a public-private partnership

Aug 25, 2014

Cyberattacks loom as an increasingly dire threat to privacy, national security and the global economy, and the best way to blunt their impact may be a public-private partnership between government and business, ...

Official says hackers hit up to 25,000 US workers

Aug 23, 2014

The internal records of as many as 25,000 Homeland Security Department employees were exposed during a recent computer break-in at a federal contractor that handles security clearances, an agency official said Friday.

User comments : 0