The U.S. National Security Agency knew for at least two years about a flaw in the way that many websites send sensitive information, now dubbed the Heartbleed bug, and regularly used it to gather critical intelligence, two people familiar with the matter said.
The NSA’s decision to keep the bug secret in pursuit of national security interests threatens to renew the rancorous debate over the role of the government’s top computer experts.
I’m so surprised.
Update: NSA denies.
It’s possible that this is something he wasn’t aware of, but if it turns out that he knew about this, but was waiting until the bug was found in order to leak that to the world, then it just might be the evidence that turns me against him. I’m not giving the NSA a pass, fuck them, but there are millions of people at risk because of this and withholding it for “national security” or to score “political points” are both bullshit reasons.