San Diego cyber security company Websense Inc. announced that its analysis tool has been enhanced with additional analytics to help identify Heartbleed-vulnerable websites.
The Heartbleed security bug has been in the news for more than a week, but Charles Renert, vice president of research at Websense, said the security company is "still finding a large number of sites that are exploitable via the Heartbleed Open SSL vulnerability."
He said the Websense tool, named CSI: ACE, is a proactive security approach for those at the most risk for Heartbleed attack.
"If people or businesses are using websites that traffic in sensitive information like tax returns, bank accounts, brokerage accounts or anything else they would consider confidential, we highly recommend running that website through our CSI: ACE Insight tool first," Renert said.
The CSI: ACE service is available free of charge at aceonloineservice.com. Any user can log in on the website, the company said, and direct the tool to inspect a website for key indicators of the Heartbleed vulnerability. The system, Websense said, is backed by more than 10,000 analytics to detect additional security risks.
According to the company, it found more than 800 Heartbleed-vulnerable sites in a scan of the top 50,000 Alexa websites.