Apple Says That None Of Its Products Are Vulnerable To Heartbleed

heartbleed

Apple has confirmed that none of its products, including web services like iCloud.com, are vulnerable to the nasty Heartbleed web bug that was recently uncovered.

Heartbleed allows hackers to intercept sensitive traffic and steal information like logins from websites using OpenSSL encryption. So when you visit a website with a little padlock in the address bar and think you’re safe, you maybe aren’t.

An Apple spokesperson told Re/Code the following:

“Apple takes security very seriously. iOS and OS X never incorporated the vulnerable software and key web-based services were not affected.”

That doesn’t mean iPads, iPhones and Mac are invulnerable to Heartbeat, but it does mean that your passwords and other data on iTunes, iCloud and other Apple services weren’t vulnerable to the bug.

Famed security researcher Bruce Schneier called Heartbleed a 11 out of 10 on the scale of “catastrophic” security flaws. It potentially affects up to 66% of the internet’s servers.

For more information about Heartbleed, check out our detailed explanation.

  • smutek

    “Well, unless you’re on an Apple device, thankfully”

    What a silly, irresponsible thing to write.

    It doesn’t matter what kind of device you’re using, what matters is if the website you are visiting uses Open SSL.

About the author

Alex HeathAlex Heath is a staff writer at Cult of Mac and co-host of the CultCast. He has been quoted by the likes of the BBC, KRON 4 News, and books like "ICONIC: A Photographic Tribute to Apple Innovation." If you want to pitch a story, share a tip, or just get in touch, additional contact information is available on his personal site. Twitter always works too.

(sorry, you need Javascript to see this e-mail address)| Read more posts by .

Posted in News, Top stories | Tagged: |