Special Offer w/ OnDemand: Get an iPad (32 G), Galaxy Tab A, or Take $250 Off OnDemand Training thru Jan 27


To attend this webcast, login to your SANS Account or create your Account.

Heartbleed Update: Making Sure You Have Stopped the Bleeding and Reducing the Chance of Future Blood-letting

  • Friday, April 18, 2014 at 1:00 PM EDT (2014-04-18 17:00:00 UTC)
  • John Pescatore, Chris Wysopal


  • Veracode

You can now attend the webcast using your mobile device!



The Heartbleed vulnerability in OpenSSl is forcing enterprises to rapidly patch thousands of servers, but the first challenge is to find all the servers using the vulnerable version of OpenSSL. Many enterprises dont know how many websites they own, such as externally hosted sites in the cloud or those acquired via mergers and acquisitions. Plus, OpenSSL is not only used in web servers are you finding all your vulnerable instances?

Once you have your environment security, the next critical step is taking advantage of the publicity around Heartbleed to make advances in reducing the vulnerabilities in all the software your business uses, whether developed in house, acquired from third parties or downloaded from open source libraries. Security managers have the attention of CEOs, CIOS and CFOs right now the perfect time to recommend strategies for avoiding the next Heartbleed.

In this SANS Ask the Expert webcast, John Pescatore, SANS Director of Emerging Security Trends will present an overview on the details around Heartbleed and an update on the current status and risk. Chris Wysopal, CTO of Veracode will drill down on strategies for discovering the full extent of your vulnerability and discuss the processes and tools enterprises can use to assure that they greatly decrease the odds of exposing customer and business information by finding vulnerabilities in all mission-critical software before deployment.

Speaker Bios

Chris Wysopal

Chris Wysopal, Co-Founder and Chief Technology Officer of Veracode, is responsible for the security analysis capabilities of Veracode technology. Mr. Wysopal is recognized as an expert and a well-known speaker in the information security field and was recently named one of InfoWorld's Top 25 CTO's and one of the 100 most influential people in IT by the editorial staffs of eWeek, CIO Insight and Baseline Magazine

John Pescatore

John Pescatore joined SANS as director of emerging technologies in January 2013, bringing with him over 35 years of experience in computer, network and information security. Prior to SANS, he was Gartner's lead security analyst for more than 13 years, working with Global 5000 corporations, government agencies and major technology and service providers. In 2008, John was named one of the top 15 most influential people in security and has frequently testified before Congress on issues relating to cybersecurity.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.