I just came across this piece from NewsFactor: Is Heartbleed the Biggest Web Security Threat Ever? and couldn’t help but chime in. Contrary to popular hype, I don’t think the biggest web security issue we face (now or ever) is a technical problem…instead, it’s something with hair on top like I talked about here.
As with the hype over the Target breach and the gloom and doom over Windows XP’s end of life, it’s never the hard-to-find, technical stuff that many people believe is at the “heart” of our security woes. Instead, this issue, like most others in life, can be distilled down into a much more basic form. We’re our own worst enemies…
P.S. Wouldn’t it be weird if the NSA is somehow tied to this vulnerability…? 😉