Most of us realize that transmitting information over the internet has its share of risks. That’s why so many of us only share sensitive information, like credit card and social security numbers, with so-called “secure sites,” otherwise known as 'https’ at the beginning of a web address. However, as we learned on April 7th, 2014, even secure sites can fail us from time to time. In fact, as we soon were made aware, millions of secure sites had in fact been failing us, for more than two years. A full two-thirds of websites rely on a program called OpenSSL to encrypt user information, making it possible for visitors to complete credit card transactions and other similarly private tasks without fear that their information could be stolen. What most of us didn’t realize until April 7th was that there was a small error, since nicknamed the Heartbleed bug, in the coding of OpenSSL. It had been there since the very beginning, December of 2011. By abusing this error, hackers could gather some of the information OpenSSL had been put in place to encrypt. In other words, all of that information you shared in confidence, safe in the knowledge that the site you were using was secure, was seemingly up for grabs.