Category Archives: News

News

Heartbleed wakes up the open source community

Published by:

Immediately after having many sleep less nights because of the recently discovered Heartbleed bug, The Linux Foundation has come up with the “Core Infrastructure Initiative (CII)” to raise money to fund critical open source projects. Companies like Facebook, Google, Amazon any few others have already come forward to support this initiative. Many others are expected to join this group.

There are lot of critical open source projects like OpenSSL, which every company uses, but lack the needed financial support. I was shocked to hear that an important project like OpenSSL receives only around $2000 annually in donations and there is no developer who works full time on this.

To avoid the next Heartbleed, more than money, these open source projects need dedicated developers and testers working full time. Hopefully CII will raise enough money to support all the critical OSS projects and fund the development.

If you consume a lot of open source projects and have deep pockets, feel free to donate for this noble cause. Let me know your thoughts on avoiding the next Heartbleed in the comments below.

If you haven’t heard of the Heartbleed bug, I have explained it in detail in another post.

Development News

Are you affected by the Heartbleed bug?

Published by:

Heartbleed bug logo

If you are a sys admin or a web master or an internet entrepreneur owning a website, you probably know about the recently discovered bug in the popular open source library Open SSL.

For people who do not know about it, let me put it in simple words. Very recently, on 7th April, 2014, a serious vulnerability has been discovered in Open SSL library (a popular open source library used for secure access to websites & servers on the Internet. It is used by Google, Yahoo, Amazon and almost all popular websites on the Internet). This vulnerability allows a hacker to steal private certificates, user passwords and sensitive data from your website or server. It is a serious bug registered under CVE system as CVE-2014-0160.

Here is what Wikipedia says …

Heartbleed is a security bug in the open-source OpenSSL cryptography library, widely used to implement the Internet’s Transport Layer Security (TLS) protocol. A fixed version of OpenSSL was released on April 7, 2014, at the same time as Heartbleed was publicly disclosed. At that time, some 17 percent (around half a million) of the Internet’s secure web servers certified by trusted authorities were believed to be vulnerable to the attack, allowing theft of the servers’ private keys and users’ session cookies and passwords.

We managed to test all our clients applications and servers if they are affected by this bug before there is any serious damage. Thanks to Vijay and his team for quickly identifying and acting on this.
We have hosted a simple utility which allows you to test for the Heartbleed vulnerability on your website (http://heartbleedtester.org/)

If you are a geek and love digging deep, read this unofficial guide which explains the vulnerability in detail.

If you are stuck fixing this bug on your servers or want to check if you are affected, we’ll be happy to help you. Get in touch to talk to our server security expert.

 

News

The new beginning

Published by:

After a long wait (6 months i believe), things started falling in place starting with an awesome new office. We are really excited about this place as much as we are excited about our work.

The two things which we like about the place are

Sunlight

This place allows ample amount of sunlight to come in. That keeps the office area well lit always, which I believe improves the work efficiency (I’ll post numbers as we gather some)

Cybrilla office with ample sunlight

Roof Terrace

The roof terrace is an open air terrace which we use for our daily lunches, weekend parties, rejuvenating ourselves between work and of course for stand-up meetings some time. This multipurpose area is where we spend most of our time in the office.

Cybrilla office roof terrace

Here’s what our team has to say

Photogenic, day in day out, and beautiful in the evening, its my window.

I feel like being in the office all the time.

This office symbolizes the silicon valley startup offices which I always dreamed of.

Best workplace I have ever worked at.

With this new workplace, we are hoping to improve our team efficiency and in turn the service to our customers.