Heartbleed OpenSSL Flaw Still Affects 200,000 Devices

Mickeycaskill writes: Despite the rush by vendors and software developers to issue fixes for the notorious Heartbleed OpenSSL flaw, 200,000 connected devices have still not been patched — eighteen months after discovery. Figures from Internet of Things (IoT) search engine provider Shodan show not all admins have been quick to fix their systems, while some security experts suggest the world will never be free of Heartbleed, which at one point was present on 220 million downloaded Android applications. "Clearly, some manufacturers and IT teams have dropped the ball, and failed to update vulnerable systems," said expert Graham Cluely. "My bet is that there will always be devices attached to the internet which are vulnerable to Heartbleed."

Re:

[Calydor]

I was thinking the same thing. Dropping from 220 MILLION to 200 THOUSAND seems like a pretty good correction. That is quite literally a 99.9% (give or take a tiny amount on the right side of the decimal) correction rate; what are we complaining about?