A content distribution network has reportedly revealed that the Heartbleed bug may not be as dangerous as thought because with two weeks of testing the company has been unable to successfully access private keys with the bug.
CloudFare reportedly revealed that Heartbleed might not allow access to a website's private SSL keys, the key to the green lock that secures data sent to users.
According to the Verge, a researcher said that if the Heartbleed bug could possible attack and retrieve private keys then it is at a 'minimum very hard' adding that it might in face be impossible.
However, CloudFare's Chief Executive Officer Matthew Prince said that heartbleed is still extremely dangerous, but some of the worst fears about it having been used by organizations like the NSA to hoover up everyone's private SSL keys is pretty unlikely based on their testing.
In an attempt to prove that the bug is not as dangerous, CloudFare has reportedly set up an intentionally vulnerable page and challenged hackers to use Heartbleed to retrieve their site's private key.
However, if the company is wrong, it will be revealed quickly and publicly, the report added.
