Skip to main content [aditude-amp id="stickyleaderboard" targeting='{"env":"staging","page_type":"article","post_id":1448942,"post_type":"story","post_chan":"none","tags":null,"ai":false,"category":"none","all_categories":"security,","session":"D"}']

Canada brings government sites back online after Heartbleed bug

Heartbleed Canada
Image Credit: Illustration by Eric Blattberg / VentureBeat

The Canadian government thinks it’s finally safe from the Heartbleed bug.

Canada has brought all of its public websites back online after installing security patches rendering them immune to Heartbleed, the government announced late Sunday evening.

[aditude-amp id="flyingcarpet" targeting='{"env":"staging","page_type":"article","post_id":1448942,"post_type":"story","post_chan":"none","tags":null,"ai":false,"category":"none","all_categories":"security,","session":"D"}']

The Treasury Board of Canada issued a directive late Thursday ordering all government websites running the flawed software offline. It called the action a precautionary measure in response to Heartbleed, the OpenSSL bug that may have enabled bad actors to snoop on “secure” communications and that went unnoticed for the past two years.

The Canada Revenue Agency, which brought its systems back online Sunday, said it is extending the filing deadline for tax returns from April 30 to May 5.

AI Weekly

The must-read newsletter for AI and Big Data industry written by Khari Johnson, Kyle Wiggers, and Seth Colaner.

Included with VentureBeat Insider and VentureBeat VIP memberships.

“Our systems are back online. We apologize for the delay and the inconvenience it has caused to Canadians,” said CRA Commissioner Andrew Treusch. “That said, the delay was necessary. We could not allow these systems back online until we were fully confident they were safe and secure for Canadian taxpayers.”

Governments and companies are still scrambling to deal with Heartbleed. Millions of Android devices (running Jelly Bean, version 4.1.1) could still be vulnerable, for example. Google is distributing patching information to device makers and operators, which are responsible for making the updates.

Researchers from Google and Finnish company Codenomicon exposed the Heartbleed bug last week. To protect yourself, you should change certain passwords and implement two-factor authentication when possible.

VentureBeat's mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Learn More