CBA’s Netbank platform was never vulnerable to Heartbleed

The suggestion has been doing the rounds, at least at the more paranoid/self-fancying end of the technology spectrum, that the Commonwealth Bank of Australia (CBA)'s Netbank online banking platform might have been vulnerable to the Heartbleed vulnerability. TL/DR: it wasn't. Heartbleed only hit sites that use certain versions of the OpenSSL secure toolkit, with its … Continue reading CBA’s Netbank platform was never vulnerable to Heartbleed