A newly discovered vulnerability in OpenSSL, one of the most commonly used implementations of the SSL and TLS cryptographic protocols, presents an immediate and serious danger to any unpatched server. The bug, known as Heartbleed, allows attackers to intercept secure communications and steal sensitive information such as login credentials, personal data, or even decryption keys.
Customers of Control Compliance Suite can utilize the various modules to discover and detect the assets that are exposed to the Heartbleed vulnerability and prioritize its remediation and hardening efforts, based on the business criticality of the assets.