Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Heartbleed Pricetag to top $500 Million?

darthcamaro (735685) writes | about 4 months ago

2

darthcamaro (735685) writes "The Heartbleed OpenSSL vulnerability has dominated IT security headlines for two weeks now as the true impact the flaw and its reach is being felt. But what will all of this cost? One figure that has been suggested is $500 million, using the 2001 W.32 Nimda worm as a precedent. Is that number too low — or is it too high?"
Link to Original Source

cancel ×

2 comments

Sorry! There are no comments related to the filter you selected.

This is the price you pay for "free" (0)

Anonymous Coward | about 4 months ago | (#46804933)

This computer programming error could cost more than most commercial software earns over its entire life cycle.

One must wonder how many more 'bugs' are lurking out there.

Re:This is the price you pay for "free" (1)

cancerouspete (2746963) | about 4 months ago | (#46805919)

perhaps if all the companies making billions off free software were to actually contribute to and fund such open projects, they'd be able to employ the necessary team to find those bugs. if companies don't want to act responsibly about the software they use, then they bear the burden. boohoo.

converse to the argument "this is the price you pay for 'free'", if openssl were a closed development project owned by some company, its certainly possible the same flaw could have existed, except they wouldn't have to tell anyone about it once found -> some hardware might have never gotten fixed, or the bug could have propagated into many more products over many years, the sum-total of that discovery would be far beyond what we are looking at now.
Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>