Technology
Cybersecurity

NSA Said to Have Used Heartbleed Bug, Exposing Consumers

Have a confidential tip for our reporters? Get in Touch
Before it’s here, it’s on the Bloomberg Terminal
Bloomberg Terminal LEARN MORE
By Michael Riley
Lock
This article is for subscribers only.

The U.S. National Security Agency knew for at least two years about a flaw in the way that many websites send sensitive information, now dubbed the Heartbleed bug, and regularly used it to gather critical intelligence, two people familiar with the matter said.

The agency’s reported decision to keep the bug secret in pursuit of national security interests threatens to renew the rancorous debate over the role of the government’s top computer experts. The NSA, after declining to comment on the report, subsequently denied that it was aware of Heartbleed until the vulnerability was made public by a private security report earlier this month.

Have a confidential tip for our reporters? Get in Touch
Before it’s here, it’s on the Bloomberg Terminal
Bloomberg Terminal LEARN MORE
HomeBTV+Market DataOpinionAudioOriginalsMagazineEvents
News
MarketsEconomicsTechnologyPoliticsGreenCryptoAI
Work & Life
WealthPursuitsBusinessweekCityLabEqualityPursuitsWork Shift
Market Data
StocksCommoditiesRates & BondsCurrenciesFuturesSectorsEconomic Calendar
Explore
NewslettersExplainersThe Big TakeGraphicsSubmit a TipAbout Us
Terms of ServiceTrademarksPrivacy Policy
CareersMade in NYCAdvertise
Ad Choices
Help©2024 Bloomberg L.P. All Rights Reserved.