A massive security flaw called Heartbleed has put millions of Internet users at risk for the past two years. Some experts are calling it the most dangerous bug online. Usernames and passwords and possibly credit card information may have been intercepted on what are supposed to be secure websites.
The bug causes a vulnerability in the OpenSSL cryptographic library, which is used on servers to scramble sensitive information to protect people's privacy. Two-thirds of all websites use OpenSSL, including major banks and social network sites
this point, there's not much users can do to remedy the situation. "It's the companies and the service providers that really need to go out there and make sure its services are patched correctly and not vulnerable to this "Heartbleed" bug," said Jeremy Rosenberg, head of digital at Allison & Partners
more @
http://www.cnbc.com/id/101569136?__source=xfinity (http://www.cnbc.com/id/101569136?__source=xfinity)|mod&par=xfinity
This is why, to this day, I have yet to put my numbers on the web.
If I can't get the name of the person I'm talking to, then I don't do business with that company.
It really is that simple, you ask the person their name, then give them the card number, if anything happens, I have a name to give the company that's about to reimburse me for my loss.
Only happened once, but at least I had recourse.