Skip to main content

The Globe and Mail

Graphic: A visual guide to the Heartbleed bug

The Heartbleed Bug is a serious vulnerability in the OpenSSL cryptographic software that protects a majority of the world's encrypted or "secure" sites. Encryption works by using "keys" (a number, or sequence of characters) to encode a sent message. The receiving computer uses the key to decrypt the message. If intercepted by a third party, the message should be  unreadable.

Read the Globe's earlier coverage on the Heartbleed bug:

Occasionally, a computer will check that there is still a secure connection by sending a small packed of data, known as a “heartbeat,” which asks for a response.

The Heartbleed Bug is a coding flaw that could allow an intruder, during a heartbeat exchange, to grab up to 64 kilobytes of data leaking from the processing memory of the website server.

... giving hackers access to passwords, user names, credit card information, instant messages, emails, and critical business information.

Hackers can read data in transit without establishing a secure connection, which makes the leak of information effectively invisible.

Story continues below advertisement

Report an error Licensing Options

The Globe invites you to share your views. Please stay on topic and be respectful to everyone. For more information on our commenting policies and how our community-based moderation works, please read our Community Guidelines and our Terms and Conditions.

We’ve made some technical updates to our commenting software. If you are experiencing any issues posting comments, simply log out and log back in.

Discussion loading… ✨

Combined Shape Created with Sketch.

Combined Shape Created with Sketch.

Thank you!

You are now subscribed to the newsletter at

You can unsubscribe from this newsletter or Globe promotions at any time by clicking the link at the bottom of the newsletter, or by emailing us at