Over 300,000 Servers Remain Vulnerable To Heartbleed

An anonymous reader writes Even though it's been a couple months since the Heartbleed bug was discovered, many servers remain unpatched and vulnerable. "Two months ago, security experts and web users panicked when a Google engineer discovered a major bug — known as Heartbleed — that put over a million web servers at risk. The bug doesn't make the news much anymore, but that doesn't mean the problem's solved. Security researcher Robert David Graham has found that at least 309,197 servers are still vulnerable to the exploit. Immediately after the announcement, Graham found some 600,000 servers were exposed by Heartbleed. One month after the bug was announced, that number dropped down to 318,239. In the past month, however, only 9,042 of those servers have been patched to block Heartbleed. That's cause for concern, because it means that smaller sites aren't making the effort to implement a fix."

Re:and yet cryptocurrencies remain immune...!

[tysonedwards]

Bitcoin used a vulnerable version of OpenSSL and required an update to Bitcoin Core to stop it from revealing the contents of it's memory to a remote attacker. That is why 0.9.1 came out in such short order after the disclosure of the Heartbleed vulnerability. See the Bitcoin Foundation's website: Heartbleed

Re:As expected

[Ingenium13]

13.04 wasn't an LTS release. LTS releases come out every 2 years and are supported for 5 years (12.04, 14.04, etc). The non-LTS releases can be thought of as betas for the LTS releases.