Friday, April 20, 2018
News Roundup

Passwords vulnerable after security flaw found

NEW YORK — Passwords, credit cards and other sensitive data are at risk after security researchers discovered a problem with an encryption technology used to securely transmit email, e-commerce transactions, social networking posts and other Web traffic.

Security researchers say the threat, known as Heartbleed, is serious, partly because it remained undiscovered for more two years. Attackers can exploit the vulnerability without leaving any trace, so anything sent during that time has potentially been compromised. It's not known, though, whether anyone has actually used it to conduct an attack.

Researchers are advising people to change all of their passwords.

"I would change every password everywhere because it's possible something was sniffed out," said Wolfgang Kandek, chief technology officer for Qualys, a maker of security-analysis software.

The flaw was found independently in recent days by researchers at Google and the Finnish security firm Codenomicon.

The breach involves SSL/TLS, an encryption technology marked by the small, closed padlock and "https:" on Web browsers to signify that traffic is secure. With the Heartbleed flaw, traffic was subject to snooping even if the padlock had been closed.

The problem affects only the variant of SSL/TLS known as OpenSSL, but that happens to be one of the most common on the Internet.

Researchers at Codenomicon say that OpenSSL is used by two of the most widely used Web server software, Apache and nginx. That means many websites potentially have this security flaw. OpenSSL is also used to secure email, chats and virtual private networks, which are used by employees to connect securely with corporate networks.

Despite the worries, Codenomicon said many large consumer sites don't have the problem because of their "conservative choice" of equipment and software. "Ironically smaller and more progressive services or those who have upgraded to (the) latest and best encryption will be affected most," the security firm added.

A fix came out Monday, but affected websites and service providers must install the update.

Many organizations were heeding the warning. Companies like Lastpass, the password manager, and Tumblr, the social network owned by Yahoo, said they had issued fixes and warned users to immediately swap out their usernames and passwords.

Comments
St. Petersburg police remove disabled adults from ‘deplorable’ assisted living facilities

St. Petersburg police remove disabled adults from ‘deplorable’ assisted living facilities

ST. PETERSBURG — Beef jerky, mayonnaise and Altoids mints were the only edible things in view inside one of the houses. There was no running water. The refrigerator was empty. A bed sat on top of the deteriorating living room floor. Cigarette butts b...
Updated: 3 hours ago

High school scoreboard for April 19

Thursday’s scoreboardBaseballDixie Hollins 8, Canterbury 0Northeast 13, Lakewood 3Calvary Christian 5, Berkeley Prep 2
Updated: 4 hours ago
Firefighters battle apartment complex fire in Tampa

Firefighters battle apartment complex fire in Tampa

TAMPA — Firefighters were battling a blaze at Captiva Club Apartments on Thursday night, according to the Hillsborough County Sheriff’s Office.According to video taken at the scene, the roof of one of the apartment buildings at 4401 Club Captiva Dr. ...
Updated: 5 hours ago
Two Florida deputies shot, killed at restaurant in Gilchrist County

Two Florida deputies shot, killed at restaurant in Gilchrist County

Two Gilchrist County sheriff’s deputies were shot and killed at a restaurant about 3 p.m. Thursday.The deputies were at Ace China restaurant in downtown Trenton when a man shot them through the restaurant’s window, a Sheriff’s Office statement said.A...
Updated: 6 hours ago
The St. Pete Pier takes another step forward

The St. Pete Pier takes another step forward

ST. PETERSBURG — Development of the city’s long-awaited pier advanced another step Thursday.The City Council approved a $15 million construction contract and additional money to design a waterside restaurant, build a playground and ferret out naming ...
Updated: 7 hours ago
Out early: Here’s the Bucs’ full 2018 schedule

Out early: Here’s the Bucs’ full 2018 schedule

TAMPA — How good can the Bucs be in 2018? Fans will get a good sense in the first three weeks, as Tampa Bay opens the year with three of its toughest games, all against reigning division champions.The Bucs open 2018 in New Orleans on Sept. 9 at...
Updated: 7 hours ago
FHP: Distracted driver plunges more than 50 feet off I-275

FHP: Distracted driver plunges more than 50 feet off I-275

ST. PETERSBURG — A distracted driver walked away unscathed after his car plunged 50 feet off Interstate 275, according to the Florida Highway Patrol.Thomas Highhouse, 61, of Pinellas Park, was driving his 2016 Chevrolet Camaro south on Interstate 275...
Updated: 7 hours ago
Lightning’s Hedman a Norris finalist again

Lightning’s Hedman a Norris finalist again

The Lightning's Victor Hedman is a finalist for the second consecutive year for the Norris Trophy, given to the top defenseman in the league. The other two finalists are Drew Doughty of the Kings and P.K. Subban of the Predators, it was announced Thu...
Updated: 7 hours ago
Police: Knife-wielding burglar breaks into house, says ‘I’m the cops’

Police: Knife-wielding burglar breaks into house, says ‘I’m the cops’

LARGO — Detectives are seeking the public’s help in identifying a man who broke into a home early Thursday morning and confronted the owners with a knife.The incident took place about 3:40 a.m. at a townhouse at 7360 Ulmerton Road, according to Largo...
Updated: 8 hours ago
Deputies: Man broke into house, set it on fire and stole their dog

Deputies: Man broke into house, set it on fire and stole their dog

SEMINOLE — A Seminole man was arrested on allegations that he burglarized a home, set it on fire and stole the homeowner’s dog, according to the Pinellas County Sheriff’s Office. Austin Lang, 19, now faces numerous charges of burglary, arson and poss...
Updated: 8 hours ago